Lucene search
+L

4 matches found

nvd
nvd
added 2024/03/29 6:15 p.m.27 views

CVE-2024-30433

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MultiVendorX WC Marketplace allows Stored XSS.This issue affects WC Marketplace: from n/a through 4.1.3...

6.5CVSS6.4AI score0.0036EPSS
Exploits0References1
cve
cve
added 2024/03/29 5:29 p.m.62 views

CVE-2024-30433

CVE-2024-30433: Stored XSS in MultiVendorX (DC-woocommerce-multi-vendor) WC Marketplace plugin. Affected: WC Marketplace versions up to 4.1.3. Root cause: improper neutralization of input during web page generation. Impact: potential cross-site scripting; estimated CVSS v3.1 base score 6.5 (Mediu...

6.5CVSS8.6AI score0.0036EPSS
Exploits0References1
cvelist
cvelist
added 2024/03/29 5:29 p.m.32 views

CVE-2024-30433 WordPress MultiVendorX Marketplace plugin <= 4.1.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MultiVendorX WC Marketplace allows Stored XSS.This issue affects WC Marketplace: from n/a through 4.1.3...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References1
patchstack
patchstack
added 2024/03/28 12:0 a.m.12 views

WordPress WC Marketplace Plugin <= 4.1.3 is vulnerable to Cross Site Scripting (XSS)

Software WC Marketplace Type Plugin Vulnerable versions = 4.1.3 Fixed in 4.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30433 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5bd23685e626 Credits LVT-tholv2k Required privilege...

6.5CVSS6.6AI score0.0036EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder