Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:41 a.m.7 views

CVE-2024-5074

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

5.4CVSS6.1AI score0.00403EPSS
Exploits1References1
OSV
OSV
added 2024/07/13 6:15 a.m.1 views

CVE-2024-5074

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

5.4CVSS5.8AI score0.00403EPSS
Exploits1References1
CVE
CVE
added 2024/07/13 6:0 a.m.54 views

CVE-2024-5074

The CVE-2024-5074 entry concerns the WordPress WP eMember plugin (versions prior to 10.6.6). The issue is a failure to sanitise/escape a parameter before echoing it, causing a Reflected Cross-Site Scripting vulnerability that could be exploited against high-privilege users (e.g., admins). The Red...

5.4CVSS5.3AI score0.00403EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/13 6:0 a.m.14 views

CVE-2024-5074 WP eMember < 10.6.6 - Reflected XSS

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

5.8AI score0.00403EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/13 6:0 a.m.21 views

CVE-2024-5074 WP eMember < 10.6.6 - Reflected XSS

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00403EPSS
Exploits1References1
Rows per page
Query Builder