CVE-2023-7200
EventON < 4.4.1 - Reflected Cross-Site Scripting
The EventON WordPress plugin before 4.4.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
We have discovered 13,033 live websites that are affected by CVE-2023-7200.
Affected Software
| Product | |
| Category | Appointment Scheduling |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 194 |
| Vulnerable Domains | 13,033 live websites (78.61% of EventOn install base) |
Common Weakness Enumeration
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-7200 and the relative popularity of websitesDetails
- Published - Jan 29, 2024
- Updated - Jan 29, 2024
Credits
- kauenavarro (finder)
- WPScan (coordinator)
CWE
CVE References
CWE References
Countries
 United States | 4,150 websites |
 Germany | 1,267 websites |
 France | 1,038 websites |
 Italy | 660 websites |
 Spain | 655 websites |
 GB | 629 websites |
 Netherlands | 486 websites |
 Canada | 431 websites |
 Brazil | 291 websites |
 Australia | 266 websites |
TLDs
| .com | 4,592 websites |
| .org | 1,708 websites |
| .de | 865 websites |
| .it | 441 websites |
| .fr | 436 websites |
| .nl | 411 websites |
| .co.uk | 321 websites |
| .net | 247 websites |
| .es | 245 websites |
| .ch | 205 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redGeographical Distribution
The distribution of websites across the globe that are exposed to CVE-2023-7200 through included software libraries and plugins.Websites affected by CVE-2023-7200
Top websites that are affected by CVE-2023-7200. Please click on the "Contact us" button above to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *************.pl |  Poland | **,*** | |
| *********************.org | United States | **,*** | |
| *****************.hr |  Croatia | **,*** | |
| ****.hr | Croatia | **,*** | |
| ***.*******.org | United States | **,*** | |
| ***.org | United States | **,*** | |
| *****.gov | United States | **,*** | |
| ***.************.org | United States | **,*** | |
| ***.***.org | France | **,*** | |
| *****.***.uk | GB | **,*** |