CVE-2023-48285
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) (CWE-80)
Published: Jun 4, 2024 / Updated: 5mo ago
010
CVSS 5.3EPSS 0.04%Medium
CVE info copied to clipboard
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a through 2.0.79.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Timeline
First Article
Feedly found the first article mentioning CVE-2023-48285. See article
Nov 30, 2023 at 3:34 PM / Blog - Wordfence
CVSS Estimate
Feedly estimated the CVSS score as MEDIUM
Jun 4, 2024 at 10:39 AM
CVE Assignment
NVD published the first details for CVE-2023-48285
Jun 4, 2024 at 11:15 AM
CVSS
A CVSS base score of 5.3 has been assigned.
Jun 4, 2024 at 11:20 AM / nvd
EPSS
EPSS Score was set to: 0.04% (Percentile: 8.9%)
Jun 11, 2024 at 10:56 AM
Attack Patterns
CAPEC-18: XSS Targeting Non-Script Elements
+null more
News
NA - CVE-2023-48285 - Improper Neutralization of Script-Related HTML...
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a...
CVE-2023-48285
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a through 2.0.79. CVE-2023-48285 originally published on CyberSecurityBoard
WordPress Accept Stripe Payments plugin <=2.0.79 - Content Injection vulnerability
Tips And Tricks Hq - MEDIUM - CVE-2023-48285 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a through 2.0.79.
CVE-2023-48285 - Improper Neutralization of Script-Related HTML Tag
CVE ID : CVE-2023-48285 Published : June 4, 2024, 11:15 a.m. 19 minutes ago Description : Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a through 2.0.79. Severity: 5.3 MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2023-48285
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a through 2.0.79.
See 4 more articles and social media posts