Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/26 6:25 a.m.10 views

CVE-2024-13822

The Photo Contest | Competition | Video Contest WordPress plugin through 2.8.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6.2AI score0.00315EPSS
Exploits1References1
nvd
nvd
added 2025/02/24 6:15 a.m.15 views

CVE-2024-13822

The Photo Contest | Competition | Video Contest WordPress plugin through 2.8.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS0.00315EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2025/02/24 6:0 a.m.6 views

CVE-2024-13822 Total Contest Lite <= 2.8.1 - Reflected XSS

The Photo Contest | Competition | Video Contest WordPress plugin through 2.8.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.2AI score0.00315EPSS
Exploits1References1
cve
cve
added 2025/02/24 6:0 a.m.62 views

CVE-2024-13822

The CVE-2024-13822 entry concerns the WordPress plugin Total Contest Lite (Photo Contest | Competition | Video Contest) up to version 2.8.1, which outputs an unsanitized parameter, enabling a Reflected XSS. Connected sources corroborate a reflected-XSS issue in Total Contest Lite (versions ≤ 2.8....

6.1CVSS5.8AI score0.00315EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder