3 matches found
CVE-2024-37471
Cross Site Scripting XSS vulnerability in WofficeIO Woffice Core allows Reflected XSS.This issue affects Woffice Core: from n/a through 5.4.8...
CVE-2024-37471
CVE-2024-37471 is a reflected XSS vulnerability in Woffice Core (WordPress plugin) affecting Woffice Core versions up to 5.4.8. The CVE entry, including references, notes the issue as Reflected XSS and indicates it has been patched. In practice, exploited input could affect users visiting a craft...
WordPress Woffice Core Plugin <= 5.4.8 is vulnerable to Cross Site Scripting (XSS)
Software Woffice Core Type Plugin Vulnerable versions = 5.4.8 Fixed in 5.4.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37471 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 88417011c3b0 Credits Rafie Muhammad Patchstack Required...