5 matches found
CVE-2024-43255
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zookatron MyBookTable Bookstore mybooktable.This issue affects MyBookTable Bookstore: from n/a through = 3.3.9...
CVE-2024-43255
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zookatron MyBookTable Bookstore mybooktable.This issue affects MyBookTable Bookstore: from n/a through = 3.3.9...
CVE-2024-43255 WordPress MyBookTable Bookstore by Stormhill Media plugin <= 3.3.9 - CSRF to XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zookatron MyBookTable Bookstore mybooktable.This issue affects MyBookTable Bookstore: from n/a through = 3.3.9...
CVE-2024-43255
CVE-2024-43255 is a CSRF-based vulnerability in the WordPress plugin MyBookTable Bookstore by Stormhill Media (affected up to version 3.3.9). The issue enables a Cross-Site Scripting (XSS) condition via CSRF; remediation is to upgrade to the latest plugin version as indicated by connected advisor...
WordPress MyBookTable Bookstore Plugin <= 3.3.9 is vulnerable to Cross Site Request Forgery (CSRF)
Software MyBookTable Bookstore Type Plugin Vulnerable versions = 3.3.9 Fixed in 3.5.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-43255 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 8cdffe075f8d Credits Majed Refaea...