Vulnerability CVE-2023-2399
Published: 2023-06-19

Description:
The QuBot WordPress plugin before 1.1.6 doesn't filter user input on chat, leading to bad code inserted on it be reflected on the user dashboard.

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://wpscan.com/vulnerability/deca3cd3-f7cf-469f-9f7e-3612f7ae514d
Copyright 2026, cxsecurity.com

 

Back to Top