How severe is CVE-2023-7197?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.1 out of 10.

What type of vulnerability is CVE-2023-7197?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2023-7197

HIGH Year: 2023

CVSS v3 Score

7.1

High

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

The Marketing Twitter Bot WordPress plugin through 1.11 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack

CVE-2010-2537

HIGH

CVSS:7.1(High)

The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a (1) BTRFS_IOC_CLONE or (2) BTRFS_IOC_CLONE_RANGE ioctl ca...

NVD-CWE-Other2010

CVE-2015-8698

HIGH

CVSS:7.1(High)

CA Release Automation (formerly LISA Release Automation) 5.0.2 before 5.0.2-227, 5.5.1 before 5.5.1-1616, 5.5.2 before 5.5.2-434, and 6.1.0 before 6.1.0-1026 allows remote attackers to read arbitrary ...

NVD-CWE-Other2015

CVE-2016-3470

HIGH

CVSS:7.1(High)

Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.4.1 allows remote authenticated users to affect confidentiality and integrity via ve...

NVD-CWE-Other2016

CVE-2016-3530

HIGH

CVSS:7.1(High)

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors rel...

NVD-CWE-Other2016