Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/27 6:13 a.m.28 views

CVE-2024-11503

The WP Tabs WordPress plugin before 2.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

6.1CVSS5.7AI score0.00257EPSS
Exploits1References1
Circl
Circl
added 2025/03/25 6:23 a.m.6 views

CVE-2024-11503

creationtimestamp| type| source ---|---|--- 2025-03-25 06:23:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8612...

6.1CVSS4.8AI score0.00257EPSS
Exploits1References1
OSV
OSV
added 2025/03/25 6:15 a.m.3 views

CVE-2024-11503

The WP Tabs WordPress plugin before 2.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

6.1CVSS5.8AI score0.00257EPSS
Exploits1References1
NVD
NVD
added 2025/03/25 6:15 a.m.11 views

CVE-2024-11503

The WP Tabs WordPress plugin before 2.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

6.1CVSS0.00257EPSS
Exploits1References1
CVE
CVE
added 2025/03/25 6:0 a.m.65 views

CVE-2024-11503

WP Tabs for WordPress is affected by CVE-2024-11503: versions before 2.2.7 do not sanitise/escape certain settings, allowing stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (e.g., multisite). The issue is documented across NVD, Red Hat, CVE records, and r...

6.1CVSS5.8AI score0.00257EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder