5 matches found
CVE-2024-3822
creationtimestamp| type| source ---|---|--- 2025-03-29 00:28:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9512...
CVE-2024-3822 Base64 Encoder/Decoder <= 0.9.2 - Reflected XSS
The Base64 Encoder/Decoder WordPress plugin through 0.9.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-3822 Base64 Encoder/Decoder <= 0.9.2 - Reflected XSS
The Base64 Encoder/Decoder WordPress plugin through 0.9.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-3822
CVE-2024-3822 corresponds to the WordPress plugin Base64 Encoder/Decoder (versions
WordPress Base64 Encoder/Decoder Plugin <= 0.9.2 is vulnerable to Cross Site Scripting (XSS)
Software Base64 Encoder/Decoder Type Plugin Vulnerable versions = 0.9.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3822 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 72ed251444bf Credits Francisco Spínola...