Lucene search
K

4 matches found

Patchstack
Patchstack
added 2025/05/19 12:34 a.m.8 views

WordPress WP ERP | Complete HR solution with recruitment plugin < 1.13.4 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Pedro Cuco Illex in WordPress Plugin WP ERP versions 1.13.4...

4.8CVSS6AI score0.00266EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.12 views

CVE-2024-12808 WP ERP | Complete HR solution with recruitment < 1.13.4 - Admin+ Stored XSS

The WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting WordPress plugin before 1.13.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...

0.00266EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.4 views

CVE-2024-12808 WP ERP | Complete HR solution with recruitment < 1.13.4 - Admin+ Stored XSS

The WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting WordPress plugin before 1.13.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...

4.7AI score0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.34 views

CVE-2024-12808

The CVE-2024-12808 entry concerns the WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting WordPress plugin (versions before 1.13.4). According to connected documents, the vulnerability is a Stored Cross-Site Scripting (Stored XSS) flaw caused by insufficie...

4.8CVSS5.4AI score0.00266EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder