2 matches found
CVE-2024-7963
The CMSMasters Content Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's multiple shortcodes in all versions up to, and including, 1.8.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
The vulnerability of the CMSMasters plugin for the WordPress content management system allows attackers to enhance their privileges and execute cross-site scripting attacks.
The vulnerability of the CMSMasters plugin for WordPress content management system is related to the lack of protective measures taken against the website’s structure. Exploiting this vulnerability allows attackers to enhance their privileges and perform cross-site attacks...