3 matches found
Simple File List < 6.1.13 - Reflected Cross-Site Scripting
Simple File List WordPress plugin \u003C 6.1.13 contains a reflected cross-site scripting caused by unsanitized URL output in an attribute, letting attackers execute malicious scripts in admin browsers, exploit requires victim to be an admin. id: CVE-2024-10146 info: name: Simple File List 6.1.13...
CVE-2024-10146
creationtimestamp| type| source ---|---|--- 2024-11-14 06:12:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113479826480414692 2024-11-14 08:17:19+00:00| seen| https://t.me/cvedetector/10906 2025-10-31 05:02:58+00:00| confirmed|...
WordPress Simple File List Plugin < 6.1.13 is vulnerable to Cross Site Scripting (XSS)
Software Simple File List Type Plugin Vulnerable versions 6.1.13 Fixed in 6.1.13 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10146 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0c5c97b90269 Credits tu3n4nh Required...