Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:43 a.m.12 views

CVE-2024-37515

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Optemiz XPlainer - WooCommerce Product FAQ allows Reflected XSS.This issue affects XPlainer - WooCommerce Product FAQ: from n/a through 1.6.3...

5.8CVSS6.9AI score0.00248EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/07/21 7:14 a.m.14 views

CVE-2024-37515 WordPress XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Optemiz XPlainer - WooCommerce Product FAQ allows Reflected XSS.This issue affects XPlainer - WooCommerce Product FAQ: from n/a through 1.6.3...

5.8CVSS7AI score0.00248EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 7:14 a.m.47 views

CVE-2024-37515

CVE-2024-37515 is a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin XPlainer – Product FAQs for WooCommerce (XPlainer – WooCommerce Product FAQ). Affected versions are 1.6.3 and earlier. The issue arises from improper neutralization of input during web page generation, ...

5.8CVSS5.7AI score0.00248EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/05 12:0 a.m.12 views

WordPress XPlainer - WooCommerce Product FAQ Plugin <= 1.6.3 is vulnerable to Cross Site Scripting (XSS)

Software XPlainer - WooCommerce Product FAQ Type Plugin Vulnerable versions = 1.6.3 Fixed in 1.6.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37515 Patch priority Medium CVSS severity Medium 5.8 Developer Claim ownership PSID 4539c5a9e2c2 Credits LVT-tholv2k...

5.8CVSS6.6AI score0.00248EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder