5 matches found
CVE-2024-47378
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Lomu WPCOM Member wpcom-member allows Reflected XSS.This issue affects WPCOM Member: from n/a through = 1.5.4...
CVE-2024-47378
CVE-2024-47378: WordPress WPCOM Member plugin ≤1.5.4 is affected by a reflected XSS caused by improper neutralization of input during web page generation. Public sources (Patchstack, Red Hat advisory, CVE records) confirm the issue and name WPCOM Member as affected through 1.5.4. Mitigation per s...
CVE-2024-47378 WordPress WPCOM Member plugin <= 1.5.4 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WPCOM WPCOM Member allows Reflected XSS.This issue affects WPCOM Member: from n/a through 1.5.4...
CVE-2024-47378 WordPress WPCOM Member plugin <= 1.5.4 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Lomu WPCOM Member wpcom-member allows Reflected XSS.This issue affects WPCOM Member: from n/a through = 1.5.4...
WordPress WPCOM Member Plugin <= 1.5.4 is vulnerable to Cross Site Scripting (XSS)
Software WPCOM Member Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47378 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5f883b482d88 Credits Muhamad Agil Fachrian Required...