2 matches found
CVE-2024-1796
CVE-2024-1796 affects HUSKY – Products Filter for WooCommerce (WordPress). The vulnerability is a Stored Cross-Site Scripting via the plugin’s woof shortcode in versions up to 1.3.5.1, caused by insufficient input sanitization and output escaping on user-supplied attributes (e.g., swoof_slug). Im...
WordPress HUSKY Plugin <= 1.3.5.1 is vulnerable to Cross Site Scripting (XSS)
Software HUSKY Type Plugin Vulnerable versions = 1.3.5.1 Fixed in 1.3.5.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1796 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 938e3d425755 Credits Bassem Essam Required privileg...