3 matches found
CVE-2024-34568 WordPress LetterPress Newsletter plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeqx LetterPress allows Stored XSS.This issue affects LetterPress: from n/a through 1.2.1...
CVE-2024-34568
CVE-2024-34568 affects the WordPress LetterPress Newsletter plugin, versions <= 1.2.1. Root cause: Improper neutralization of input during web page generation, leading to Stored XSS. Impact is documented as Cross-Site Scripting with low CVSS v3.1 base score (5.9) and low overall severity; expl...
WordPress LetterPress Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)
Software LetterPress Type Plugin Vulnerable versions = 1.2.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-34568 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 60779a6f071c Credits P.L.SANU Required privilege Administrator...