CVE-2024-29102

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...

CVE-2024-29102

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HasThemes Extensions For CF7 allows Stored XSS.This issue affects Extensions For CF7: from n/a through 3.0.6...

CVE-2024-29102

CVE-2024-29102 is an XSS in the WordPress plugin family Extensions For CF7 (HasThemes Extensions For CF7). Described as Improper Neutralization of Input During Web Page Generation (Stored XSS), it affects Extensions For CF7 versions from n/a up to 3.0.6. Public sources (Red Hat advisory and Wordf...

WordPress Extensions For CF7 Plugin <= 3.0.6 is vulnerable to Cross Site Scripting (XSS)

Software Extensions For CF7 Type Plugin Vulnerable versions = 3.0.6 Fixed in 3.0.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29102 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 67b6a4990cc0 Credits RE-ALTER Required privilege...