Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:19 a.m.7 views

CVE-2024-3491

The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's "How To" and "FAQ" Blocks in all versions up to, and including, 1.29 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.8AI score0.00333EPSS
Exploits0References1
NVD
NVD
added 2024/04/23 11:15 a.m.21 views

CVE-2024-3491

The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's "How To" and "FAQ" Blocks in all versions up to, and including, 1.29 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.7AI score0.00333EPSS
Exploits0References2
CVE
CVE
added 2024/04/23 11:7 a.m.68 views

CVE-2024-3491

CVE-2024-3491 concerns the Schema & Structured Data for WP & AMP plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) in the plugin’s How To and FAQ blocks, affecting all versions up to 1.29. It stems from insufficient input sanitization and output escaping on user-suppl...

6.4CVSS5.6AI score0.00333EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/04/23 12:0 a.m.10 views

WordPress Schema & Structured Data for WP & AMP Plugin <= 1.29 is vulnerable to Cross Site Scripting (XSS)

Software Schema & Structured Data for WP & AMP Type Plugin Vulnerable versions = 1.29 Fixed in 1.30 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3491 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9d749b7fc8ce Credits...

6.4CVSS5.8AI score0.00333EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder