High severity7.1NVD Advisory· Published Nov 8, 2023· Updated Jun 17, 2026
CVE-2023-46621
CVE-2023-46621
Description
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Enej Bajgoric / Gagan Sandhu / CTLT DEV User Avatar plugin <= 1.4.11 versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:enejbajgoric\/gagansandhu\/ctltdev:user_avatar:*:*:*:*:*:wordpress:*:*Range: <=1.4.11
- Range: <=1.4.11
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.