2 matches found
CVE-2024-1296
CVE-2024-1296 applies to the Brizy – Page Builder plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) in the plugin’s block upload, caused by insufficient input sanitization and output escaping of user-supplied attributes. Affected: Brizy Page Builder for WordPress vers...
WordPress Brizy Plugin <= 2.4.40 is vulnerable to Cross Site Scripting (XSS)
Software Brizy Type Plugin Vulnerable versions = 2.4.40 Fixed in 2.4.41 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1296 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 79ee66440574 Credits stealthcopter Required privilege...