3 matches found
CVE-2024-1684
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the contact form file field CSS metabox in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output escaping. This...
CVE-2024-1684
The CVE-2024-1684 entry concerns Otter Blocks PRO (WordPress) versions
WordPress Otter Blocks PRO Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)
Software Otter Blocks PRO Type Plugin Vulnerable versions = 2.6.3 Fixed in 2.6.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1684 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 337ee76a7920 Credits wesley wcraft Required...