Medium severity6.1NVD Advisory· Published Aug 7, 2023· Updated Jun 17, 2026
CVE-2023-3524
CVE-2023-3524
Description
The WPCode WordPress plugin before 2.0.13.1 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/WPCodedescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/89570379-769b-4684-b8a7-28c37b408e5dnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.