Unrated severityNVD Advisory· Published May 8, 2023· Updated May 5, 2025
Cloud Manager <= 1.0 - Reflected XSS
CVE-2023-0421
Description
The Cloud Manager WordPress plugin through 1.0 does not sanitise and escape the query param ricerca before outputting it in an admin panel, allowing unauthenticated attackers to trick a logged in admin to trigger a XSS payload by clicking a link.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Cloud Managerdescription
- Range: <=1.0
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/a356fea0-f143-4736-b2b2-c545c525335cmitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.