3 matches found
CVE-2024-0658
creationtimestamp| type| source ---|---|--- 2024-03-03 10:16:38+00:00| seen| https://t.me/ctinow/198642...
CVE-2024-0658
The CVE-2024-0658 entry concerns the WordPress Insert PHP Code Snippet plugin. A Stored Cross-Site Scripting (XSS) flaw in versions up to 1.3.4 arises from insufficient input sanitization and output escaping on the insert-php-code-snippet-manage page, allowing an authenticated administrator to in...
WordPress Insert PHP Code Snippet Plugin <= 1.3.4 is vulnerable to Cross Site Scripting (XSS)
Software Insert PHP Code Snippet Type Plugin Vulnerable versions = 1.3.4 Fixed in 1.3.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0658 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID af77943c0a22 Credits Felipe Restrepo...