WordPress Simple Side Tab plugin < 2.2.0 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Simple Side Tab versions 2.2.0...

CVE-2024-11183

The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-11183

The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-11183 Simple Side Tab < 2.2.0 - Admin+ Stored XSS

The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

PT-2024-16806 · WordPress · Simple Side Tab

Name of the Vulnerable Software and Affected Versions: Simple Side Tab WordPress plugin version prior to 2.2.0 Description: The issue concerns the Simple Side Tab WordPress plugin, which does not properly sanitize and escape some of its settings. This could allow high-privilege users, such as...

WordPress plugin Simple Side Tab 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress Simple Side Tab plugin <= 2.1.14 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Krugov Artyom in WordPress Plugin Simple Side Tab versions = 2.1.14...

WordPress Simple Side Tab Plugin <= 2.1.14 is vulnerable to Cross Site Scripting (XSS)

Software Simple Side Tab Type Plugin Vulnerable versions = 2.1.14 Fixed in 2.2.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10551 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2f20e42d5a25 Credits Krugov Artyom Required...