3 matches found
CVE-2024-12465
The Property Hive Stamp Duty Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stampdutycalculatorscotland' shortcode in all versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping on user supplied attributes...
CVE-2024-12465 Property Hive Stamp Duty Calculator <= 1.0.22 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Property Hive Stamp Duty Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stampdutycalculatorscotland' shortcode in all versions up to, and including, 1.0.22 due to insufficient input sanitization and output escaping on user supplied attributes...
CVE-2024-12465
CVE-2024-12465 (Property Hive Stamp Duty Calculator for WordPress) is a stored XSS flaw in the stamp_duty_calculator_scotland shortcode present in all versions up to 1.0.22. The vulnerability stems from insufficient input sanitization and output escaping on user-supplied shortcode attributes, ena...