5 matches found
CVE-2024-35706
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Team Heateor Heateor Social Login allows Cross-Site Scripting XSS.This issue affects Heateor Social Login: from n/a through 1.1.32...
CVE-2024-35706
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Team Heateor Heateor Social Login allows Cross-Site Scripting XSS.This issue affects Heateor Social Login: from n/a through 1.1.32...
CVE-2024-35706
CVE-2024-35706 is an Unauthenticated Stored XSS in Heateor Social Login (WordPress plugin). Public description confirms improper neutralization of input during web page generation, enabling XSS in Heateor Social Login up to version 1.1.32. Connected sources (Red Hat, Wordfence) corroborate the vu...
CVE-2024-35706 WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Team Heateor Heateor Social Login allows Cross-Site Scripting XSS.This issue affects Heateor Social Login: from n/a through 1.1.32...
WordPress Heateor Social Login Plugin <= 1.1.32 is vulnerable to Cross Site Scripting (XSS)
Software Heateor Social Login Type Plugin Vulnerable versions = 1.1.32 Fixed in 1.1.33 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35706 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dcaf15173a8d Credits LVT-tholv2k Required...