Lucene search
K

4 matches found

Circl
Circl
added 2024/12/13 5:33 a.m.9 views

CVE-2024-12581

creationtimestamp| type| source ---|---|--- 2024-12-13 05:33:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113643879513000912 2024-12-13 08:14:25+00:00| seen| https://t.me/cvedetector/12830...

4.8CVSS8.7AI score0.0046EPSS
Exploits1References2
CVE
CVE
added 2024/12/13 5:24 a.m.53 views

CVE-2024-12581

CVE-2024-12581 concerns the WordPress plugin Kadence Blocks (Gutenberg Blocks with AI by Kadence WP – Page Builder Features). Connected sources indicate the vulnerability is a Stored Cross-Site Scripting (XSS) in all versions up to 3.2.53, caused by insufficient input sanitization and output esca...

4.8CVSS4.4AI score0.0046EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/13 5:24 a.m.20 views

CVE-2024-12581 Kadence Blocks <= 3.2.53 - Authenticated (Admin+) Stored Cross-Site Scripting

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.53 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

4.4CVSS5.8AI score0.0046EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/12/13 5:24 a.m.26 views

CVE-2024-12581 Kadence Blocks <= 3.2.53 - Authenticated (Admin+) Stored Cross-Site Scripting

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.2.53 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

4.4CVSS0.0046EPSS
Exploits1References3
Rows per page
Query Builder