3 matches found
CVE-2024-13399
creationtimestamp| type| source ---|---|--- 2025-01-31 02:30:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113920614679818356 2025-01-31 03:15:28+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgyzu6ui3f2t 2025-01-31 04:12:51+00:00| seen|...
CVE-2024-13399 Gosign – Posts Slider Block <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Gosign – Posts Slider Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'posts-slider-block' block in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2024-13399 Gosign – Posts Slider Block <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Gosign – Posts Slider Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'posts-slider-block' block in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...