CVE-2024-10483 SimplePress Forum < 6.10.11 - Reflected XSS

The Simple:Press Forum WordPress plugin before 6.10.11 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

CVE-2024-10483

CVE-2024-10483 affects the Simple:Press Forum plugin for WordPress (versions before 6.10.11). The issue is a Reflected Cross-Site Scripting due to insufficient sanitisation/escaping of a parameter when output back in the page. Impact is defined as a reflected XSS vulnerability enabling injection ...

CVE-2024-10483 SimplePress Forum < 6.10.11 - Reflected XSS

The Simple:Press Forum WordPress plugin before 6.10.11 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

PT-2025-1835 · WordPress · Simple:Press Forum

Name of the Vulnerable Software and Affected Versions: Simple:Press Forum plugin for WordPress versions up to, and including, 6.10.11 Description: The issue is related to Reflected Cross-Site Scripting via the s parameter due to insufficient input sanitization and output escaping. This allows...