2 matches found
CVE-2024-0656
CVE-2024-0656 affects the Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with Ease for WordPress, all versions up to 2.6.6. It enables Stored XSS via the Google Captcha Site Key due to insufficient input sanitization/output escaping. Exploitation requires administ...
WordPress Password Protected Plugin <= 2.6.6 is vulnerable to Cross Site Scripting (XSS)
Software Password Protected Type Plugin Vulnerable versions = 2.6.6 Fixed in 2.6.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0656 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7a68f344cd36 Credits Felipe Restrepo...