5 matches found
CVE-2024-50535
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kyle M Brown Step by Step step-by-step allows Stored XSS.This issue affects Step by Step: from n/a through = 0.4.5...
CVE-2024-50535
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kyle M Brown Step by Step step-by-step allows Stored XSS.This issue affects Step by Step: from n/a through = 0.4.5...
CVE-2024-50535 WordPress Step by Step plugin <= 0.4.5 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kyle M Brown Step by Step step-by-step allows Stored XSS.This issue affects Step by Step: from n/a through = 0.4.5...
CVE-2024-50535
CVE-2024-50535 is a WordPress Step by Step plugin vulnerability (versions ≤ 0.4.5) exposing a Stored XSS due to improper input neutralization during page generation. Affected software: WordPress Step by Step plugin. Root cause is stated as input not properly sanitized during web page generation. ...
WordPress Step by Step Plugin <= 0.4.5 is vulnerable to Cross Site Scripting (XSS)
Software Step by Step Type Plugin Vulnerable versions = 0.4.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-50535 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e27be9b81170 Credits SOPROBRO Required privilege Contributor...