CVE-2023-45607
WordPress WordPress Popular Posts Plugin <= 6.3.2 is vulnerable to Cross Site Scripting (XSS)
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Hector Cabrera WordPress Popular Posts plugin <= 6.3.2 versions.
We have discovered 9,489 live websites that are affected by CVE-2023-45607.
Affected Software
| Product |  WordPress Popular Posts |
| Category | Wordpress Plugins |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 81 |
| Vulnerable Domains | 9,489 live websites (43.08% of WordPress Popular Posts install base) |
Common Weakness Enumeration
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Details
- Published - Oct 18, 2023
- Updated - Oct 18, 2023
Credits
- Rafie Muhammad (Patchstack) (finder)
CWE
CVE References
CWE References
Countries
 United States | 2,179 websites |
 Japan | 3,948 websites |
 Germany | 383 websites |
 France | 266 websites |
 GB | 235 websites |
 Poland | 204 websites |
 Russia | 188 websites |
 Spain | 171 websites |
 Italy | 159 websites |
TLDs
| .com | 4,826 websites |
| .jp | 784 websites |
| .net | 583 websites |
| .org | 326 websites |
| .co.jp | 295 websites |
| .de | 199 websites |
| .ru | 153 websites |
| .info | 139 websites |
| .pl | 139 websites |
| .fr | 119 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-45607
Top websites that are affected by CVE-2023-45607. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***.*******.***.in |  India | *,*** | |
| *********.com | United States | *,*** | |
| ***.**********.com | United States | *,*** | |
| ***************.com | United States | **,*** | |
| *******************.com | Japan | **,*** | |
| ********.tokyo | Japan | **,*** | |
| *****.***.**.uk | GB | **,*** | |
| ***.*******.edu | United States | **,*** | |
| ******.com | United States | **,*** | |
| ***.***************.com | United States | **,*** |