2 matches found
CVE-2024-2499
The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'accordions' shortcode in all versions up to, and including, 0.4.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-2499
The CVE-2024-2499 entry concerns the WordPress plugin Squelch Tabs and Accordions Shortcodes. A stored XSS flaw exists in the accordions shortcode across versions up to and including 0.4.3 due to insufficient input sanitization and output escaping of user-supplied attributes. Exploitation require...