2 matches found
CVE-2024-1291
CVE-2024-1291 affects the Brizy – Page Builder plugin for WordPress. It is a Stored Cross-Site Scripting (XSS) vulnerability in the Countdown URL parameter present in all versions up to and including 2.4.40, caused by insufficient input sanitization and output escaping. Exploitation requires auth...
WordPress Brizy Plugin <= 2.4.40 is vulnerable to Cross Site Scripting (XSS)
Software Brizy Type Plugin Vulnerable versions = 2.4.40 Fixed in 2.4.41 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1291 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ede9cd10d43f Credits 0liveira Required privilege...