5 matches found
CVE-2024-13850
The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...
CVE-2024-13850
The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...
CVE-2024-13850
creationtimestamp| type| source ---|---|--- 2025-02-08 12:26:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113968257327109943 2025-02-08 13:15:24+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lho74czs4a22 2025-02-08 13:49:10+00:00| seen|...
CVE-2024-13850 Simple add pages or posts <= 2.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...
CVE-2024-13850
CVE-2024-13850 refers to the WordPress plugin Simple Add Pages or Posts. Affected versions are all up to 2.0.0 and the vulnerability is Stored Cross-Site Scripting due to insufficient input sanitization and output escaping. It requires authenticated attacker with administrator-level access; impac...