2 matches found
WordPress Archivist – Custom Archive Templates Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS)
Software Archivist – Custom Archive Templates Type Plugin Vulnerable versions = 1.7.5 Fixed in 1.7.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1810 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 20ae6785aa4a Credi...
CVE-2024-1810
The CVE-2024-1810 entry concerns the Archivist – Custom Archive Templates plugin for WordPress. It specifies a Reflected Cross-Site Scripting (XSS) flaw in the shortcode_attributes parameter present in all versions up to and including 1.7.5, caused by insufficient input sanitization and output es...