2 matches found
CVE-2024-12262
creationtimestamp| type| source ---|---|--- 2024-12-21 07:15:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldse5xqq5a2i 2024-12-21 07:29:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113689636551845442 2024-12-21 08:38:35+00:00| seen|...
CVE-2024-12262 Ebook Store <= 5.8001 - Reflected Cross-Site Scripting via 'step'
The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'step' parameter in all versions up to, and including, 5.8001 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scrip...