CVE-2023-1893 | Login Configurator

The Login Configurator WordPress plugin through 2.1 does not properly escape a URL parameter before outputting it to the page, leading to a reflected cross-site scripting vulnerability targeting site administrators..This CVE has a CVSS3.1 score of 8.1 and a Base Severity of HIGH.

Info	Details
CVE ID	CVE-2023-1893
CVE State	PUBLISHED
BaseScore	NA
BaseSeverity	NA
VectorString	NA
Version	NA

References for CVE-2023-1893 :
https://wpscan.com/vulnerability/dbe6cf09-971f-42e9-b744-9339454168c7
http://packetstormsecurity.com/files/173723/WordPress-Login-Configurator-2.1-Cross-Site-Scripting.html

Metric Type	Metric Score
AttackVector(AV)	NA
AttackComplexity(AC)	NA
PrivilegesRequired(PR)	NA
UserInteraction(UI)	NA
Scope(S)	NA
Confidentiality(C)	NA
Availability(A)	NA
Integrity(I)	NA