Lucene search
+L

4 matches found

nvd
nvd
added 2025/02/04 6:15 a.m.15 views

CVE-2024-13330

The JustRows free WordPress plugin through 0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS0.00552EPSS
Exploits1References1
osv
osv
added 2025/02/04 6:15 a.m.3 views

CVE-2024-13330

The JustRows free WordPress plugin through 0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

7.1CVSS7.3AI score0.00552EPSS
Exploits1References1
cve
cve
added 2025/02/04 6:0 a.m.61 views

CVE-2024-13330

The CVE-2024-13330 entry concerns the JustRows free WordPress plugin (versions up to 0.2). The flaw is a Reflected XSS caused by not sanitising/escaping a parameter before echoing it in the page, enabling an attacker to craft input that could be reflected back to high-privilege users (e.g., admin...

7.1CVSS6.3AI score0.00552EPSS
Exploits1References1Affected Software1
ptsecurity
ptsecurity
added 2025/02/04 12:0 a.m.7 views

PT-2025-2116

Name of the Vulnerable Software and Affected Versions JustRows free WordPress plugin versions 0.2 and earlier Description The issue arises from the plugin not sanitising and escaping a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting. This could be used...

7.1CVSS8.1AI score0.00552EPSS
Exploits1References7
Rows per page
Query Builder