CVE-2024-52352

CVE-2024-52352 is a DOM-based Cross-Site Scripting flaw in the WordPress plugin Postcasa Shortcode. The vulnerability affects Postcasa Shortcode versions up to 1.0 and is exploitable in an authenticated context (Contributor+). Descriptions from Red Hat and Wordfence corroborate that the issue ena...

CVE-2024-52352 WordPress Postcasa Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in miloandrew Postcasa Shortcode postcasa allows DOM-Based XSS.This issue affects Postcasa Shortcode: from n/a through = 1.0...