Lucene search
K

4 matches found

Circl
Circl
added 2024/10/01 11:3 a.m.5 views

CVE-2024-9267

creationtimestamp| type| source ---|---|--- 2024-10-01 11:03:45+00:00| seen| https://t.me/cvedetector/6705...

6.1CVSS4.8AI score0.00391EPSS
Exploits0References1
NVD
NVD
added 2024/10/01 8:15 a.m.8 views

CVE-2024-9267

The Easy WordPress Subscribe – Optin Hound plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.4.3. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS0.00391EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/01 7:30 a.m.17 views

CVE-2024-9267 Easy WordPress Subscribe – Optin Hound <= 1.4.3 - Reflected Cross-Site Scripting via add_query_arg Parameter

The Easy WordPress Subscribe – Optin Hound plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.4.3. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS0.00391EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/10/01 12:0 a.m.6 views

WordPress Optin Hound Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS)

Software Optin Hound Type Plugin Vulnerable versions = 1.4.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9267 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 08d5a68f0d8b Credits Francesco Carlucci...

6.1CVSS5.7AI score0.00391EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder