5 matches found
CVE-2024-11277
The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 2.35.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages th...
CVE-2024-11277
creationtimestamp| type| source ---|---|--- 2024-11-20 07:03:47+00:00| seen| https://infosec.exchange/users/cve/statuses/113514002970470296 2024-11-20 08:43:25+00:00| seen| https://t.me/cvedetector/11563...
CVE-2024-11277 404 Solution <= 2.35.19 - Reflected Cross-Site Scripting
The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 2.35.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages th...
CVE-2024-11277 404 Solution <= 2.35.19 - Reflected Cross-Site Scripting
The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 2.35.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages th...
WordPress 404 Solution Plugin <= 2.35.19 is vulnerable to Cross Site Scripting (XSS)
Software 404 Solution Type Plugin Vulnerable versions = 2.35.19 Fixed in 2.35.20 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-11277 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6a1ea4fa1e3d Credits Max Boll b0lli...