2 matches found
CVE-2024-0384
The CVE-2024-0384 vulnerability affects the WP Recipe Maker plugin for WordPress, where Stored Cross-Site Scripting is possible via Recipe Notes in all versions up to 9.1.0 due to insufficient input sanitization and output escaping. Authentication requirement is at contributor level or higher, en...
CVE-2024-0384 WP Recipe Maker <= 9.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Recipe Notes
The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Recipe Notes in all versions up to, and including, 9.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with contributor-level and above...