3 matches found
CVE-2024-13727
creationtimestamp| type| source ---|---|--- 2026-02-11 16:17:23+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-13727.yaml 2026-02-12 21:03:25+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3meovceca5b2c...
CVE-2024-13727
The MemberSpace WordPress plugin before 2.1.14 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against only unauthenticated users...
CVE-2024-13727 MemberSpace – Membership Plugin and Paid Subscriptions < 2.1.14 - Reflected XSS
The MemberSpace WordPress plugin before 2.1.14 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against only unauthenticated users...