Lucene search

K

CVE-2024-1852

🗓️ 09 Apr 2024 18:29:58Reported by WordfenceType 
cvelist
 cvelist
🔗 www.cve.org👁 9 Views

The WP-Members Membership Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the X-Forwarded-For header due to insufficient input sanitization and output escaping

Show more
Related
Affected
Refs
[
  {
    "vendor": "cbutlerjr",
    "product": "WP-Members Membership Plugin",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "3.4.9.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Apr 2024 18:58Current
6.3Medium risk
Vulners AI Score6.3
CVSS37.2
EPSS0.000
9
.json
Report