Lucene search

CVE-2024-35646 WordPress Smartarget Message Bar plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability

🗓️ 01 Jun 2024 23:41:20Reported by PatchstackType

WordPress Smartarget Message Bar plugin XSS vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Vulnrichment	CVE-2024-35646 WordPress Smartarget Message Bar plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability	1 Jun 202423:20	–	vulnrichment
WPVulnDB	Smartarget Message Bar <= 1.3 - Authenticated (Admin+) Stored Cross-Site Scripting	5 Jun 202400:00	–	wpvulndb
CVE	CVE-2024-35646	2 Jun 202400:15	–	cve
Patchstack	WordPress Smartarget Message Bar Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)	30 May 202400:00	–	patchstack
NVD	CVE-2024-35646	2 Jun 202400:15	–	nvd
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 27, 2024 to June 2, 2024)	6 Jun 202415:09	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "smartarget-message-bar",
    "product": "Smartarget Message Bar",
    "vendor": "Smartarget",
    "versions": [
      {
        "lessThanOrEqual": "1.3",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/smartarget-message-bar/wordpress-smartarget-message-bar-plugin-1-3-cross-site-scripting-xss-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Jun 2024 23:20Current

6.1Medium risk

Vulners AI Score6.1

CVSS35.9

EPSS0.00074

CWE-79