5 matches found
CVE-2024-49663
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in elenkadark uCAT – Next Story ucat-next-story allows Reflected XSS.This issue affects uCAT – Next Story: from n/a through = 2.0.0...
CVE-2024-49663 WordPress uCAT – Next Story plugin <= 2.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in elenkadark uCAT – Next Story ucat-next-story allows Reflected XSS.This issue affects uCAT – Next Story: from n/a through = 2.0.0...
CVE-2024-49663 WordPress uCAT – Next Story plugin <= 2.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in elenkadark uCAT – Next Story ucat-next-story allows Reflected XSS.This issue affects uCAT – Next Story: from n/a through = 2.0.0...
CVE-2024-49663
CVE-2024-49663 affects the WordPress plugin uCAT – Next Story (versions ≤ 2.0.0). The description documents an improper neutralization of input during web page generation leading to a reflected XSS vulnerability. Exploitation is possible without authentication (per PatchStack entry), via crafting...
WordPress uCAT – Next Story Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)
Software uCAT – Next Story Type Plugin Vulnerable versions = 2.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49663 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b51e5248ad22 Credits Mika Required privilege...