Lucene search
+L

5 matches found

Circl
Circl
added 2025/01/18 7:16 a.m.6 views

CVE-2024-13393

creationtimestamp| type| source ---|---|--- 2025-01-18 07:16:14+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfyraqyhek2t 2025-01-18 07:23:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113848157404077718 2025-01-18 07:39:19+00:00| seen|...

6.4CVSS7.3AI score0.0033EPSS
Exploits0References5
NVD
NVD
added 2025/01/18 7:15 a.m.12 views

CVE-2024-13393

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS0.0033EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/18 7:5 a.m.20 views

CVE-2024-13393 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS0.0033EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/18 7:5 a.m.8 views

CVE-2024-13393 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS5.8AI score0.0033EPSS
Exploits0References2
CVE
CVE
added 2025/01/18 7:5 a.m.47 views

CVE-2024-13393

CVE-2024-13393 affects the Video Share VOD – Turnkey Video Site Builder Script WordPress plugin. The vulnerability is Stored Cross-Site Scripting via the videowhisper_videos shortcode in all versions up to 2.6.31, caused by insufficient input sanitization and output escaping of user-supplied attr...

6.4CVSS5.8AI score0.0033EPSS
Exploits0References2
Rows per page
Query Builder