5 matches found
CVE-2024-29798
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Appsmav Gratisfaction allows Stored XSS.This issue affects Gratisfaction: from n/a through 4.3.4...
CVE-2024-29798
CVE-2024-29798 is a stored XSS in the Gratisfaction plugin for Gratisfaction (WooCommerce) with affected range listed as Gratisfaction: from n/a through 4.3.4. The CVE entry provides an improper input neutralization during web page generation, enabling stored cross-site scripting. The associated ...
CVE-2024-29798 WordPress Gratisfaction plugin <= 4.3.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Appsmav Gratisfaction allows Stored XSS.This issue affects Gratisfaction: from n/a through 4.3.4...
CVE-2024-29798 WordPress Gratisfaction plugin <= 4.3.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Appsmav Gratisfaction allows Stored XSS.This issue affects Gratisfaction: from n/a through 4.3.4...
WordPress Gratisfaction Plugin <= 4.3.4 is vulnerable to Cross Site Scripting (XSS)
Software Gratisfaction Type Plugin Vulnerable versions = 4.3.4 Fixed in 4.3.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29798 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 23596df169c6 Credits Ngô Thiên An ancorn from VNPT-VCI Requir...