Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/04 10:47 p.m.7 views

CVE-2024-44009

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace allows Reflected XSS.This issue affects WCFM Marketplace: from n/a through = 3.6.11...

7.1CVSS5.9AI score0.0031EPSS
Exploits0References1
nvd
nvd
added 2024/09/17 11:15 p.m.19 views

CVE-2024-44009

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace allows Reflected XSS.This issue affects WCFM Marketplace: from n/a through = 3.6.11...

7.1CVSS0.0031EPSS
Exploits0References1
cve
cve
added 2024/09/17 11:2 p.m.54 views

CVE-2024-44009

CVE-2024-44009 affects the WordPress WCFM Marketplace plugin (WooCommerce) with Reflected XSS caused by improper neutralization of input during web page generation. Public details show impact on WC Lovers WCFM Marketplace versions up to 3.6.10 (some sources reference up to 3.6.11). Patch guidance...

7.1CVSS5.9AI score0.0031EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/09/16 12:0 a.m.8 views

WordPress WCFM Marketplace Plugin <= 3.6.11 is vulnerable to Cross Site Scripting (XSS)

Software WCFM Marketplace Type Plugin Vulnerable versions = 3.6.11 Fixed in 3.6.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44009 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e15165a2d9e9 Credits Le Ngoc Anh Required privileg...

7.1CVSS6.6AI score0.0031EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder