Lucene search
K

6 matches found

Circl
Circl
added 2025/05/20 7:43 p.m.6 views

CVE-2024-11843

creationtimestamp| type| source ---|---|--- 2025-05-20 19:43:02+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17063...

4.8CVSS4.8AI score0.00266EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/05/18 11:13 p.m.8 views

WordPress Panorama – WordPress Project Management Plugin plugin <= 1.5.1 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Bob Matyas in WordPress Plugin Panorama – WordPress Project Management Plugin versions = 1.5.1...

4.8CVSS6AI score0.00266EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/17 9:2 p.m.8 views

CVE-2024-11843

The Panorama WordPress plugin through 1.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.6 views

CVE-2024-11843 Panorama – WordPress Project Management Plugin <= 1.5.1 - Admin+ Stored XSS

The Panorama WordPress plugin through 1.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.7AI score0.00266EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.12 views

CVE-2024-11843 Panorama – WordPress Project Management Plugin <= 1.5.1 - Admin+ Stored XSS

The Panorama WordPress plugin through 1.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.28 views

CVE-2024-11843

CVE-2024-11843 affects the Panorama WordPress plugin up to version 1.5.1. The vulnerability arises because the plugin does not sanitize and escape certain settings, enabling Stored XSS when administered by high-privilege users (admin), even if unfiltered_html is disallowed (e.g., in multisite). A...

4.8CVSS5.7AI score0.00266EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder