3 matches found
CVE-2024-32590 WordPress Kattene plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webfood Kattene allows Stored XSS.This issue affects Kattene: from n/a through 1.7...
CVE-2024-32590 WordPress Kattene plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webfood Kattene allows Stored XSS.This issue affects Kattene: from n/a through 1.7...
CVE-2024-32590
CVE-2024-32590 — Kattene WordPress plugin is affected in versions up to 1.7. The issue is an authenticated (Contributor+) Stored Cross-Site Scripting (XSS) due to insufficient input sanitization and output escaping of user-supplied attributes in Kattene. An attacker with contributor-level access ...