4 matches found
CVE-2024-9206
The MAS Companies For WP Job Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.13. This makes it possible for unauthenticated attackers to inject arbitrary we...
CVE-2024-9206
creationtimestamp| type| source ---|---|--- 2024-10-18 10:13:34+00:00| seen| https://t.me/cvedetector/8295...
CVE-2024-9206 MAS Companies For WP Job Manager <= 1.0.13 - Reflected Cross-Site Scripting
The MAS Companies For WP Job Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.13. This makes it possible for unauthenticated attackers to inject arbitrary we...
WordPress MAS Companies For WP Job Manager Plugin <= 1.0.13 is vulnerable to Cross Site Scripting (XSS)
Software MAS Companies For WP Job Manager Type Plugin Vulnerable versions = 1.0.13 Fixed in 1.0.14 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9206 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 18ca937f1193 Credits...