Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 6:53 a.m.6 views

CVE-2024-12260

The Ultimate Endpoints With Rest Api plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS6.4AI score0.0038EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/12/12 3:23 a.m.10 views

CVE-2024-12260 Ultimate Endpoints With Rest Api <= 2.2.2 - Reflected Cross-Site Scripting

The Ultimate Endpoints With Rest Api plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS6.4AI score0.0038EPSS
Exploits0References2
cve
cve
added 2024/12/12 3:23 a.m.77 views

CVE-2024-12260

CVE-2024-12260 concerns the WordPress plugin Ultimate Endpoints With Rest Api . The vulnerability is a Reflected Cross-Site Scripting via the page parameter in all versions up to 2.2.2, caused by insufficient input sanitization and output escaping. It allows unauthenticated attackers to inject we...

6.1CVSS6.4AI score0.0038EPSS
Exploits0References2
cvelist
cvelist
added 2024/12/12 3:23 a.m.22 views

CVE-2024-12260 Ultimate Endpoints With Rest Api <= 2.2.2 - Reflected Cross-Site Scripting

The Ultimate Endpoints With Rest Api plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS0.0038EPSS
Exploits0References2
Rows per page
Query Builder