4 matches found
CVE-2024-44009
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace allows Reflected XSS.This issue affects WCFM Marketplace: from n/a through = 3.6.11...
CVE-2024-44009
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace allows Reflected XSS.This issue affects WCFM Marketplace: from n/a through = 3.6.11...
CVE-2024-44009
CVE-2024-44009 affects the WordPress WCFM Marketplace plugin (WooCommerce) with Reflected XSS caused by improper neutralization of input during web page generation. Public details show impact on WC Lovers WCFM Marketplace versions up to 3.6.10 (some sources reference up to 3.6.11). Patch guidance...
WordPress WCFM Marketplace Plugin <= 3.6.11 is vulnerable to Cross Site Scripting (XSS)
Software WCFM Marketplace Type Plugin Vulnerable versions = 3.6.11 Fixed in 3.6.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-44009 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e15165a2d9e9 Credits Le Ngoc Anh Required privileg...