2 matches found
CVE-2024-49646
CVE-2024-49646 affects the WordPress plugin Code Generate (<= 1.0). The vulnerability is a Reflected XSS caused by improper input neutralization during web page generation, enabling an attacker to inject script via unauthenticated input. The CVSSv3.1 base score is 7.1 (HIGH) with NETWORK attac...
WordPress Code Generate Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)
Software Code Generate Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49646 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 9f72ba821343 Credits Mika Required privilege Unauthenticate...