CVE-2024-29772 WordPress MyBookTable Bookstore plugin <= 3.3.7 - Cross Site Scripting (XSS) vulnerability

🗓️ 27 Mar 2024 12:55:59Reported by PatchstackType

Cross Site Scripting vulnerability in WordPress MyBookTable Bookstore plugin

Reporter	Title	Published	Views	Family All 10
CNNVD	WordPress Plugin MyBookTable Bookstore by Stormhill Media 安全漏洞	27 Mar 202400:00	–	cnnvd
CVE	CVE-2024-29772	27 Mar 202412:55	–	cve
EUVD	EUVD-2024-26767	3 Oct 202520:07	–	euvd
NVD	CVE-2024-29772	27 Mar 202413:15	–	nvd
Patchstack	WordPress MyBookTable Bookstore Plugin <= 3.3.7 is vulnerable to Cross Site Scripting (XSS)	25 Mar 202400:00	–	patchstack
Positive Technologies	PT-2024-23014 · Unknown · Mybooktable Bookstore	27 Mar 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-29772	23 May 202508:56	–	redhatcve
Vulnrichment	CVE-2024-29772 WordPress MyBookTable Bookstore plugin <= 3.3.7 - Cross Site Scripting (XSS) vulnerability	27 Mar 202412:55	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (March 25, 2024 to March 31, 2024)	4 Apr 202417:35	–	wordfence
WPVulnDB	MyBookTable Bookstore < 3.3.8 - Authenticated (Author+) Stored Cross-Site Scripting	1 Apr 202400:00	–	wpvulndb

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "mybooktable",
    "product": "MyBookTable Bookstore",
    "vendor": "Stormhill Media",
    "versions": [
      {
        "changes": [
          {
            "at": "3.3.8",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.3.7",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/mybooktable/wordpress-mybooktable-bookstore-plugin-3-3-7-cross-site-scripting-xss-vulnerability

28 Apr 2026 16:09Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.5

EPSS0.00197

CWE-79