PT-2024-23315 · WordPress · Announce From The Dashboard

Name of the Vulnerable Software and Affected Versions: Announce from the Dashboard plugin for WordPress versions up to, and including, 1.5.2 Description: The issue is related to Stored Cross-Site Scripting via admin settings due to insufficient input sanitization and output escaping. This allows...

WordPress Plugin Announce from the Dashboard 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

WordPress Announce from the Dashboard Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Announce from the Dashboard Type Plugin Vulnerable versions = 1.5.2 Fixed in 1.5.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3030 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID bce66fe8b9a7 Credits Benedictus...