3 matches found
CVE-2024-13577
creationtimestamp| type| source ---|---|--- 2025-02-18 05:16:26+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ligiz3c6fa2o 2025-02-18 07:57:01+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4748 2025-02-18 11:39:00+00:00| seen|...
CVE-2024-13577 CATS Job Listings <= 2.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting
The CATS Job Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catsone' shortcode in all versions up to, and including, 2.0.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2024-13577
CVE-2024-13577 — CATS Job Listings (WordPress) stored XSS . The WordPress plugin is vulnerable via the catsone shortcode, allowing stored cross-site scripting in all versions up to 2.0.9 due to insufficient input sanitization and output escaping for user-provided attributes. An authenticated atta...