Cross-Site Scripting Vulnerability in WP-Table Reloaded by WordPress
CVE-2013-1463

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP-table Reloaded
Vendor: CVE Published:; 7 February 2013

Summary

A Cross-Site Scripting (XSS) vulnerability exists in the WP-Table Reloaded module prior to version 1.9.4, allowing remote attackers to inject arbitrary web scripts or HTML through the manipulation of the id parameter. This vulnerability can potentially lead to unauthorized actions being performed on behalf of users, data theft, or other malicious outcomes. It is crucial for users of the affected version to apply available updates and implement security best practices to mitigate risks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/81748

vdb-entryx_refsource_XF

http://osvdb.org/89754

vdb-entryx_refsource_OSVDB

http://tobias.baethge.com/2013/01/maintenance-release-wp-...

x_refsource_CONFIRM

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 7, 2013
Vulnerability Reserved
Jan 29, 2013