Lucene search
+L

4 matches found

NVD
NVD
added 2024/04/07 6:15 p.m.23 views

CVE-2024-31255

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ELEXtensions ELEX WooCommerce Dynamic Pricing and Discounts allows Reflected XSS.This issue affects ELEX WooCommerce Dynamic Pricing and Discounts: from n/a through 2.1.2...

7.1CVSS7AI score0.00334EPSS
Exploits0References1
CVE
CVE
added 2024/04/07 5:51 p.m.50 views

CVE-2024-31255

CVE-2024-31255 affects the ELEX WooCommerce Dynamic Pricing and Discounts WordPress plugin. The connected data confirms a Reflected XSS due to Improper Neutralization of Input During Web Page Generation, impacting versions up to 2.1.2 (n/a–2.1.2). The CVE entry provides a CVSS score of 7.1 (HIGH,...

7.1CVSS8.6AI score0.00334EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/07 5:51 p.m.27 views

CVE-2024-31255 WordPress ELEX WooCommerce Dynamic Pricing and Discounts plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ELEXtensions ELEX WooCommerce Dynamic Pricing and Discounts allows Reflected XSS.This issue affects ELEX WooCommerce Dynamic Pricing and Discounts: from n/a through 2.1.2...

7.1CVSS7.1AI score0.00334EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.13 views

WordPress ELEX WooCommerce Dynamic Pricing and Discounts Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software ELEX WooCommerce Dynamic Pricing and Discounts Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31255 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d8f4c47ac76 Credits L...

7.1CVSS6.5AI score0.00334EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder