Lucene search
K

4 matches found

Circl
Circl
added 2024/12/07 1:59 a.m.5 views

CVE-2024-10046

creationtimestamp| type| source ---|---|--- 2024-12-07 01:59:48+00:00| seen| https://infosec.exchange/users/cve/statuses/113609066901902163 2024-12-07 04:10:53+00:00| seen| https://t.me/cvedetector/12311...

6.1CVSS8.7AI score0.00355EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/07 1:45 a.m.37 views

CVE-2024-10046 افزونه پیامک ووکامرس Persian WooCommerce SMS <= 7.0.5 - Reflected Cross-Site Scripting

The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of removequeryarg without appropriate escaping on the URL in all versions up to, and including, 7.0.5. This makes it possible for unauthenticated attackers to injec...

6.1CVSS0.00355EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/07 1:45 a.m.7 views

CVE-2024-10046 افزونه پیامک ووکامرس Persian WooCommerce SMS <= 7.0.5 - Reflected Cross-Site Scripting

The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of removequeryarg without appropriate escaping on the URL in all versions up to, and including, 7.0.5. This makes it possible for unauthenticated attackers to injec...

6.1CVSS6.4AI score0.00355EPSS
Exploits0References3
CVE
CVE
added 2024/12/07 1:45 a.m.36 views

CVE-2024-10046

CVE-2024-10046 affects the Persian WooCommerce SMS plugin for WordPress, in versions up to and including 7.0.5, due to use of remove_query_arg without proper escaping, enabling Reflected Cross-Site Scripting. Exploitation requires a user to click a link; exploitation details in the connected docs...

6.1CVSS6AI score0.00355EPSS
Exploits0References3
Rows per page
Query Builder