4 matches found
CVE-2024-27990
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in The Moneytizer allows Stored XSS.This issue affects The Moneytizer: from n/a through 9.5.20...
CVE-2024-27990
creationtimestamp| type| source ---|---|--- 2024-04-13 02:37:04+00:00| seen| https://t.me/arpsyndicate/4636...
CVE-2024-27990
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in The Moneytizer allows Stored XSS.This issue affects The Moneytizer: from n/a through 9.5.20...
CVE-2024-27990
CVE-2024-27990 is a Stored Cross-Site Scripting vulnerability in WordPress plugin The Moneytizer, affecting versions up to 9.5.20. The issue arises from improper input neutralization during web-page generation, enabling authenticated (Contributor+) users to inject scripts that can be stored and l...