CVE-2024-9425

The Advanced Category and Custom Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's adtaximage shortcode in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

CVE-2024-9425 Advanced Category and Custom Taxonomy Image <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via ad_tax_image Shortcode

The Advanced Category and Custom Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's adtaximage shortcode in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

PT-2024-39624 · WordPress · Advanced Category/Custom Taxonomy Image

Name of the Vulnerable Software and Affected Versions: Advanced Category and Custom Taxonomy Image plugin for WordPress versions up to, and including, 1.0.9 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied...

Automatic Updates

From the Advanced category, choose the Update tab and make sure all the automatic update boxes are checked. This will make sure the browser, all add-ons and search engines are fully updated. You should check the “automatically download and install the update” option to make sure this is seamless...