2 matches found
WordPress Todo Custom Field plugin <= 3.0.4 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Todo Custom Field versions = 3.0.4...
WordPress Todo Custom Field Plugin <= 3.0.4 is vulnerable to Cross Site Scripting (XSS)
Software Todo Custom Field Type Plugin Vulnerable versions = 3.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49642 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 03eb6add369b Credits Mika Required privilege...