4 matches found
CVE-2024-35170 WordPress Sticky banner plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hidden Depth Sticky banner allows Stored XSS.This issue affects Sticky banner: from n/a through 1.2.0...
CVE-2024-35170 WordPress Sticky banner plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hidden Depth Sticky banner allows Stored XSS.This issue affects Sticky banner: from n/a through 1.2.0...
CVE-2024-35170
CVE-2024-35170 relates to a Stored XSS in the WordPress plugin Sticky banner (improper input neutralization during page generation). Affected: Sticky banner
WordPress Sticky banner Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS)
Software Sticky banner Type Plugin Vulnerable versions = 1.2.0 Fixed in 1.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35170 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b5e466579051 Credits Rayhan Ramdhany Hanaputra Required...