5 matches found
CVE-2024-13825
The Email Keep WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13825
creationtimestamp| type| source ---|---|--- 2025-03-08 06:35:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6924 2025-03-08 09:20:07+00:00| seen| https://t.me/cvedetector/19884 2025-03-08 10:30:18+00:00| seen|...
CVE-2024-13825
The Email Keep WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-13825
CVE-2024-13825 : The Email Keep WordPress plugin up to version 1.1 is affected by a Reflected XSS vulnerability where a parameter is not sanitized/escaped before being output on the page. This could be exploited against high-privilege users such as admins. The supplied connected sources confirm t...
CVE-2024-13825 Email Keep <= 1.1 - Reflected XSS
The Email Keep WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...