5 matches found
CVE-2024-49302
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in portfoliohub WordPress Portfolio Builder – Portfolio Gallery uber-grid allows Stored XSS.This issue affects WordPress Portfolio Builder – Portfolio Gallery: from n/a through = 1.1.7...
CVE-2024-49302 WordPress WordPress Portfolio Builder – Portfolio Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in portfoliohub WordPress Portfolio Builder – Portfolio Gallery uber-grid allows Stored XSS.This issue affects WordPress Portfolio Builder – Portfolio Gallery: from n/a through = 1.1.7...
CVE-2024-49302 WordPress WordPress Portfolio Builder – Portfolio Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Portfoliohub WordPress Portfolio Builder – Portfolio Gallery allows Stored XSS.This issue affects WordPress Portfolio Builder – Portfolio Gallery: from n/a through 1.1.7...
CVE-2024-49302
CVE-2024-49302 describes a Stored XSS in WordPress Plugin WordPress Portfolio Builder – Portfolio Gallery (versions up to 1.1.7). The vulnerability arises from improper input neutralization during web page generation, enabling attackers to inject scripts that execute in victims’ browsers. Impact ...
WordPress WordPress Portfolio Builder – Portfolio Gallery Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS)
Software WordPress Portfolio Builder – Portfolio Gallery Type Plugin Vulnerable versions = 1.1.7 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49302 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 17af9ba7c91e Credits Muhammad...