Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:28 a.m.15 views

CVE-2024-43353

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...

6.5CVSS5.9AI score0.00245EPSS
Exploits0References1
CVE
CVE
added 2024/08/18 1:2 p.m.45 views

CVE-2024-43353

CVE-2024-43353 corresponds to a Stored XSS in the myCred WordPress plugin (Authenticated, Contributor+ context) via improper input neutralization during page generation for versions up to 2.7.2. The connected Wordfence entry indicates this vulnerability exists and has a patched fix (patch/remedy ...

6.5CVSS5.9AI score0.00245EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/18 1:2 p.m.14 views

CVE-2024-43353 WordPress myCred plugin <= 2.7.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...

6.5CVSS5.2AI score0.00245EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/18 1:2 p.m.23 views

CVE-2024-43353 WordPress myCred plugin <= 2.7.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through = 2.7.2...

6.5CVSS0.00245EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.29 views

WordPress myCred Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS)

Software myCred Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43353 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a2faf75ac250 Credits LVT-tholv2k Required privilege Contributor...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder