Lucene search
WPScanCVELIST:CVE-2024-3236HistoryJun 17, 2024 - 6:00 a.m.
CVE-2024-3236 Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS
2024-06-1706:00:01
WPScan
www.cve.org
6
cve-2024-3236
easy notify lite
popup builder
wordpress
stored xss
The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks.
CNA Affected
[
{
"vendor": "Unknown",
"product": "Popup Builder",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "1.1.33"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2024-3236
2024-06-17 06:15:08
vulnrichment
vulnrichment
CVE-2024-3236 Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS
2024-06-17 06:00:01
cve
cve
CVE-2024-3236
2024-06-17 06:15:08
wpexploit
wpexploit
Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS
2024-05-27 00:00:00
wpvulndb
wpvulndb
Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS
2024-05-27 00:00:00
wordfence
wordfence
Related for CVELIST:CVE-2024-3236