3 matches found
CVE-2024-24803
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPoperation Ultra Companion – Companion plugin for WPoperation Themes allows Stored XSS.This issue affects Ultra Companion – Companion plugin for WPoperation Themes: from n/a through 1.1.9...
CVE-2024-24803
CVE-2024-24803 affects the WordPress plugin Ultra Companion (WPoperation Themes). The vulnerability is a Stored XSS caused by improper neutralization of input during web page generation, impacting Ultra Companion – Companion plugin for WPoperation Themes up to version 1.1.9. A fixed version exist...
WordPress Ultra Companion Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)
Software Ultra Companion Type Plugin Vulnerable versions = 1.1.9 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-24803 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 27efb6397cad Credits Ray Wilson Required privilege...