Lucene search
K

4 matches found

nvd
nvd
added 2024/03/31 8:15 p.m.25 views

CVE-2024-30561

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

7.1CVSS6.9AI score0.00395EPSS
Exploits0References1
cve
cve
added 2024/03/31 7:38 p.m.55 views

CVE-2024-30561

CVE-2024-30561 is a Reflected Cross‑Site Scripting vulnerability in the WordPress plugin Appointment Calendar by Scientech It Solution. It affects versions listed as “from n/a through 2.9.6,” arising from improper neutralization of input during web page generation. The CVSSv3.1 base score is 7.1 ...

7.1CVSS8.6AI score0.00395EPSS
Exploits0References1
cvelist
cvelist
added 2024/03/31 7:38 p.m.32 views

CVE-2024-30561 WordPress Appointment Calendar plugin <= 2.9.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

7.1CVSS7.1AI score0.00395EPSS
Exploits0References1
patchstack
patchstack
added 2024/03/29 12:0 a.m.10 views

WordPress Appointment Calendar Plugin <= 2.9.6 is vulnerable to Cross Site Scripting (XSS)

Software Appointment Calendar Type Plugin Vulnerable versions = 2.9.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30561 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1a521c54a658 Credits Dimas Maulana Required privilege...

7.1CVSS6.6AI score0.00395EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder