6 matches found
WP DeskLite - Reflected XSS
WP DeskLite WordPress plugin through 1.0.0 contains a reflected XSS caused by unsanitized and unescaped parameter output, letting attackers execute scripts against high privilege users such as admin, exploit requires crafted request. id: CVE-2024-12724 info: name: WP DeskLite - Reflected XSS...
CVE-2024-12724
The WP DeskLite WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-12724
WP DeskLite WordPress plugin up to version 1.0.0 is affected by a reflected XSS due to unsanitized/unescaped parameters echoed back in pages. This can enable script execution in admin users’ browsers when a crafted request is sent. Affected: WP DeskLite 1.0.0 and earlier. Root cause: parameter ou...
CVE-2024-12724 WP DeskLite <= 1.0.0 - Reflected XSS
The WP DeskLite WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
PT-2025-21432
Name of the Vulnerable Software and Affected Versions: WP DeskLite WordPress plugin versions 1.0.0 and earlier Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page...
WordPress plugin WP DeskLite 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...