5 matches found
CVE-2024-35646
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Erez Hadas-Sonnenschein Smartarget Message Bar smartarget-message-bar.This issue affects Smartarget Message Bar: from n/a through = 1.5...
CVE-2024-35646
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Erez Hadas-Sonnenschein Smartarget Message Bar smartarget-message-bar.This issue affects Smartarget Message Bar: from n/a through = 1.5...
CVE-2024-35646
CVE-2024-35646 refers to a stored XSS vulnerability in the WordPress plugin Smartarget Message Bar. The available sources identify the issue as improper input neutralization during web page generation, allowing stored Cross‑Site Scripting for authenticated users (admin+). Affected versions are li...
CVE-2024-35646 WordPress Smartarget Message Bar plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Erez Hadas-Sonnenschein Smartarget Message Bar smartarget-message-bar.This issue affects Smartarget Message Bar: from n/a through = 1.5...
WordPress Smartarget Message Bar Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS)
Software Smartarget Message Bar Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35646 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 8e4c1da011ed Credits Rayhan Ramdhany Hanaputra Required...