4 matches found
CVE-2024-13100
The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13100 Woo UPS Pickup <= 2.6.3 - Reflected XSS
The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13100
The CVE-2024-13100 entry concerns the OPSI Israel Domestic Shipments WordPress plugin (versions <= 2.6.3). The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by insufficient sanitisation/escaping of a parameter before it is echoed on the page, potentially impacting high-p...
CVE-2024-13100 Woo UPS Pickup <= 2.6.3 - Reflected XSS
The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...