Lucene search

CVE-2024-4943

🗓️ 21 May 2024 03:08:15Reported by [email protected]Type

Blocksy theme for WordPress vulnerability in 'has_field_link_rel' parameter up to version 2.0.46 allows Contributor-level attackers to inject XS

Reporter	Title	Published	Views	Family All 6
WPVulnDB	Blocksy < 2.0.47 - Contributor+ Stored XSS	21 May 202400:00	–	wpvulndb
CVE	CVE-2024-4943	21 May 202403:15	–	cve
Vulnrichment	CVE-2024-4943 Blocksy <= 2.0.46 - Authenticated (Contributor+) Stored Cross-Site Scripting	21 May 202402:32	–	vulnrichment
Patchstack	WordPress Blocksy Theme <= 2.0.46 is vulnerable to Cross Site Scripting (XSS)	21 May 202400:00	–	patchstack
Cvelist	CVE-2024-4943 Blocksy <= 2.0.46 - Authenticated (Contributor+) Stored Cross-Site Scripting	21 May 202402:32	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)	30 May 202415:23	–	wordfence

Nvd

Node

creativethemes blocksyRange<2.0.47wordpress

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/dc7099d7-94fd-42be-a921-bfcad43ae252
themes	www.themes.trac.wordpress.org/changeset

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 May 2024 03:15Current

6Medium risk

Vulners AI Score6

CVSS35.4

EPSS0.00045

CWE-79