Lucene search
HistoryMar 18, 2024 - 4:15 p.m.
CVE-2024-1333
cve-2024-1333
wordpress plugin
stored xss
security vulnerability
nvd
The Responsive Pricing Table WordPress plugin before 5.1.11 does not validate and escape some of its Pricing Table options before outputting them back in a page/post where the related shortcode is embed, which could allow users with the author role and above to perform Stored Cross-Site Scripting attacks
Affected configurations
Node
wpdarkoresponsive_pricing_tableRange<5.1.11
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wpdarko | responsive_pricing_table | * | cpe:2.3:a:wpdarko:responsive_pricing_table:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "Responsive Pricing Table",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "5.1.11"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
cvelist
cvelist
CVE-2024-1333 Responsive Pricing Table < 5.1.11 - Author+ Stored XSS
2024-03-18 15:15:26
wpvulndb
wpvulndb
Responsive Pricing Table < 5.1.11 - Author+ Stored XSS
2024-02-26 00:00:00
nvd
nvd
CVE-2024-1333
2024-03-18 16:15:07
wpexploit
wpexploit
Responsive Pricing Table < 5.1.11 - Author+ Stored XSS
2024-02-26 00:00:00
wordfence
wordfence