Lucene search
+L

4 matches found

NVD
NVD
added 2024/03/29 2:15 p.m.15 views

CVE-2024-30430

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Email Newsletter Team - FluentCRM Fluent CRM allows Stored XSS.This issue affects Fluent CRM: from n/a through 2.8.44...

5.9CVSS5.7AI score0.00356EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 1:33 p.m.72 views

CVE-2024-30430

CVE-2024-30430 is a stored XSS in the WP Email Newsletter Team (FluentCRM) for FluentCRM, with exploitation possible via input not properly neutralized during web page generation. Affected: FluentCRM up to version 2.8.44. Root cause per Red Hat/other sources is improper input handling leading to ...

5.9CVSS8.6AI score0.00356EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/29 1:33 p.m.22 views

CVE-2024-30430 WordPress FluentCRM plugin <= 2.8.44 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Email Newsletter Team - FluentCRM Fluent CRM allows Stored XSS.This issue affects Fluent CRM: from n/a through 2.8.44...

5.9CVSS5.9AI score0.00356EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.12 views

WordPress Fluent CRM Plugin <= 2.8.44 is vulnerable to Cross Site Scripting (XSS)

Software Fluent CRM Type Plugin Vulnerable versions = 2.8.44 Fixed in 2.8.45 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30430 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a52c9396d7a9 Credits Ananda Dhakal Patchstack Required privile...

5.9CVSS6.6AI score0.00356EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder