3 matches found
CVE-2024-13574
The XV Random Quotes WordPress plugin through 1.40 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13574
CVE-2024-13574 – XV Random Quotes (WordPress) ≤ 1.40 : The vulnerability arises from insufficient sanitization/escaping of an input parameter before echoing it in the page, causing a reflected XSS that could target high-privilege users (e.g., admins). Public details about a fix/patch version are ...
CVE-2024-13574 XV Random Quotes <= 1.40 - Reflected XSS
The XV Random Quotes WordPress plugin through 1.40 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...