Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-3966
HistoryJun 14, 2024 - 6:15 a.m.

CVE-2024-3966

2024-06-1406:15:12
[email protected]
web.nvd.nist.gov
3
pray for me wordpress plugin
cross-site scripting
unauthenticated visitors

0.0004 Low

EPSS

Percentile

9.1%

JSON

The Pray For Me WordPress plugin through 1.0.4 does not sanitise and escape some parameters, which could unauthenticated visitors to perform Cross-Site Scripting attacks that trigger when an admin visits the Prayer Requests in the WP Admin

Related

cvelist 1
wpexploit 1
vulnrichment 1
cve 1
wpvulndb 1
wordfence 1
cvelist
cvelist
CVE-2024-3966 Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-06-14 06:00:02
wpexploit
wpexploit
Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-05-24 00:00:00
vulnrichment
vulnrichment
CVE-2024-3966 Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-06-14 06:00:02
cve
cve
CVE-2024-3966
2024-06-14 06:15:12
wpvulndb
wpvulndb
Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-05-24 00:00:00
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)
2024-05-30 15:23:45

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for NVD:CVE-2024-3966
cvelist1wpexploit1vulnrichment1cve1wpvulndb1wordfence1