2 matches found
CVE-2024-2474
CVE-2024-2474 affects the WordPress plugin Standout Color Boxes and Buttons . It is a Stored Cross‑Site Scripting (XSS) vulnerability in the plugin’s color-button shortcode, present in all versions up to and including 0.7.0. The root cause is insufficient input sanitization and output escaping on...
WordPress Standout Color Boxes and Buttons Plugin <= 0.7.0 is vulnerable to Cross Site Scripting (XSS)
Software Standout Color Boxes and Buttons Type Plugin Vulnerable versions = 0.7.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2474 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID cbc359b9c82d Credits Francesco...