Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:21 a.m.5 views

CVE-2024-3236

The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.4AI score0.00312EPSS
Exploits2References1
NVD
NVD
added 2024/06/17 6:15 a.m.27 views

CVE-2024-3236

The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks...

5.4CVSS0.00312EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/06/17 6:0 a.m.26 views

CVE-2024-3236 Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS

The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks...

0.00312EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/06/17 6:0 a.m.18 views

CVE-2024-3236 Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS

The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks...

5.8AI score0.00312EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/05/27 12:0 a.m.12 views

WordPress Popup Builder Plugin < 1.1.33 is vulnerable to Cross Site Scripting (XSS)

Software Popup Builder Type Plugin Vulnerable versions 1.1.33 Fixed in 1.1.33 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3236 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID c56e5abe41cb Credits Eunho Kim Required privile...

5.4CVSS5.7AI score0.00312EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder