Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.8 views

CVE-2024-34567

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

5.9CVSS6.7AI score0.00259EPSS
Exploits0References1
NVD
NVD
added 2024/05/17 6:15 a.m.29 views

CVE-2024-34567

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

6.5CVSS6.1AI score0.00259EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 6:7 a.m.31 views

CVE-2024-34567 WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

6.5CVSS6.1AI score0.00259EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 6:7 a.m.60 views

CVE-2024-34567

CVE-2024-34567 describes a Stored Cross-Site Scripting (XSS) vulnerability in Popup Builder for WordPress, affecting the Popup Builder plugin up to version 1.1.29. The issue is caused by improper input neutralization during web page generation, enabling storedXSS by authenticated actors. Connecte...

6.5CVSS6.6AI score0.00259EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 6:7 a.m.21 views

CVE-2024-34567 WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in GhozyLab, Inc. Popup Builder allows Stored XSS.This issue affects Popup Builder: from n/a through 1.1.29...

5.9CVSS6.8AI score0.00259EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/05/14 12:0 a.m.20 views

WordPress Popup Builder Plugin <= 1.1.29 is vulnerable to Cross Site Scripting (XSS)

Software Popup Builder Type Plugin Vulnerable versions = 1.1.29 Fixed in 1.1.30 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34567 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 42654a589b9a Credits Rayhan Ramdhany Hanaputra Required...

5.9CVSS6.6AI score0.00259EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder