2 matches found
CVE-2024-38685 WordPress WP Announcement plugin <= 2.0.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in SubscriptionPro WP Announcement allows Stored XSS.This issue affects WP Announcement: from n/a through 2.0.8...
WordPress WP Announcement Plugin <=2.0.8 is vulnerable to Cross Site Scripting (XSS)
Software WP Announcement Type Plugin Vulnerable versions =2.0.8 Fixed in 2.0.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38685 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 6b93ac81fa76 Credits Rayhan Ramdhany Hanaputra Required...