Lucene search
K

5 matches found

NVD
NVD
added 2024/06/04 3:15 p.m.19 views

CVE-2024-35649

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 3.2.3...

6.5CVSS6.4AI score0.00295EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/04 2:17 p.m.24 views

CVE-2024-35649 WordPress Save as PDF Plugin by Pdfcrowd plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 3.2.3...

6.5CVSS5.8AI score0.00295EPSS
Exploits0References1
CVE
CVE
added 2024/06/04 2:17 p.m.50 views

CVE-2024-35649

CVE-2024-35649 describes a Stored XSS in the Pdfcrowd Save as PDF plugin for WordPress. The initial description indicates vulnerability in the plugin from versions up to 3.2.3 (inclusive). Connected CVE data confirm that this is a stored XSS in web page generation via user input, with remediation...

6.5CVSS6.2AI score0.00295EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/04 2:17 p.m.17 views

CVE-2024-35649 WordPress Save as PDF Plugin by Pdfcrowd plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 3.2.3...

6.5CVSS6.8AI score0.00295EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/03 12:0 a.m.17 views

WordPress Save as PDF plugin by Pdfcrowd Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)

Software Save as PDF plugin by Pdfcrowd Type Plugin Vulnerable versions = 3.2.3 Fixed in 3.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35649 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7dd6585cf515 Credits LVT-tholv2k Required...

6.5CVSS6.6AI score0.00295EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder