5 matches found
CVE-2024-35640
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tomas Cordero Safety Exit allows Stored XSS.This issue affects Safety Exit: from n/a through 1.7.0...
CVE-2024-35640
CVE-2024-35640 is a stored XSS in the WordPress Safety Exit plugin affecting versions up to 1.7.0. Exploitation requires Administrator privileges. The issue has been fixed in 1.7.1; upgrading to 1.7.1 or later mitigates the vulnerability (low severity per Patchstack).
CVE-2024-35640 WordPress Safety Exit plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tomas Cordero Safety Exit allows Stored XSS.This issue affects Safety Exit: from n/a through 1.7.0...
CVE-2024-35640 WordPress Safety Exit plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tomas Cordero Safety Exit allows Stored XSS.This issue affects Safety Exit: from n/a through 1.7.0...
WordPress Safety Exit Plugin <= 1.7.0 is vulnerable to Cross Site Scripting (XSS)
Software Safety Exit Type Plugin Vulnerable versions = 1.7.0 Fixed in 1.7.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35640 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f6ae4e6871a7 Credits Cronus Required privilege Administrator...