3 matches found
CVE-2024-43949
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Automattic GHActivity allows Stored XSS.This issue affects GHActivity: from n/a through 2.0.0-alpha...
CVE-2024-43949
CVE-2024-43949 is a Stored XSS vulnerability in the GHActivity WordPress plugin (Automattic GHActivity) that arises from improper neutralization of input during web page generation. Affected versions are reported as GHActivity from n/a through 2.0.0-alpha. The issue enables stored cross-site scri...
WordPress GHActivity Plugin <= 2.0.0-alpha is vulnerable to Cross Site Scripting (XSS)
Software GHActivity Type Plugin Vulnerable versions = 2.0.0-alpha Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43949 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 2243960350fa Credits Rafie Muhammad Patchstack Required...