2 matches found
CVE-2024-43344
CVE-2024-43344 : Icegram Engage (WordPress plugin) is affected by a stored XSS vulnerability in versions up to 3.1.25 due to improper input neutralization during web page generation. The issue is annotated as an authenticated (Contributor+) Stored XSS. Remediation: upgrade Icegram to 3.1.25 or la...
WordPress Icegram Plugin <= 3.1.25 is vulnerable to Cross Site Scripting (XSS)
Software Icegram Type Plugin Vulnerable versions = 3.1.25 Fixed in 3.1.26 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43344 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b8c0f8cef941 Credits savphill Required privilege Contributor...