3 matches found
CVE-2024-38679
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Yongki Agustinus Animated Typed JS Shortcode allows Stored XSS.This issue affects Animated Typed JS Shortcode: from n/a through 2.0...
CVE-2024-38679
CVE-2024-38679 is a stored XSS in the WordPress plugin Animated Typed JS Shortcode (vulnerable: n/a through 2.0; vulnerability type: Improper neutralization of input during web page generation). The issue is authenticated (Contributor+) and affects the plugin’s Shortcode rendering path. Public so...
WordPress Animated Typed JS Shortcode Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)
Software Animated Typed JS Shortcode Type Plugin Vulnerable versions = 2.0 Fixed in 2.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38679 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 80aa662f11eb Credits LVT-tholv2k Required privilege...