Lucene search
+L

4 matches found

Circl
Circl
added 2025/01/15 12:16 p.m.7 views

CVE-2024-12593

creationtimestamp| type| source ---|---|--- 2025-01-15 12:16:32+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfrqmy73zh2c 2025-01-15 12:21:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1735 2025-01-15 12:47:45+00:00| seen|...

6.4CVSS8.7AI score0.00389EPSS
Exploits0References4
NVD
NVD
added 2025/01/15 12:15 p.m.8 views

CVE-2024-12593

The PDF for WPForms + Drag and Drop Template Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's yeepdfdotab shortcode in all versions up to, and including, 4.6.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS0.00389EPSS
Exploits0References3
CVE
CVE
added 2025/01/15 11:24 a.m.44 views

CVE-2024-12593

CVE-2024-12593 affects the WordPress plugin PDF for WPForms + Drag and Drop Template Builder. It is a Stored Cross-Site Scripting vulnerability in the yeepdf_dotab shortcode caused by insufficient input sanitization and output escaping on user-provided attributes. Impact: authenticated attackers ...

6.4CVSS5.7AI score0.00389EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/15 11:24 a.m.7 views

CVE-2024-12593 PDF for WPForms + Drag and Drop Template Builder <= 4.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via yeepdf_dotab Shortcode

The PDF for WPForms + Drag and Drop Template Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's yeepdfdotab shortcode in all versions up to, and including, 4.6.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00389EPSS
Exploits0References3
Rows per page
Query Builder