4 matches found
CVE-2024-51610
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in seothemes Display Terms Shortcode display-terms-shortcode allows Stored XSS.This issue affects Display Terms Shortcode: from n/a through = 1.0.4...
CVE-2024-51610 WordPress Display Terms Shortcode plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in seothemes Display Terms Shortcode display-terms-shortcode allows Stored XSS.This issue affects Display Terms Shortcode: from n/a through = 1.0.4...
CVE-2024-51610
CVE-2024-51610 is a stored XSS in the WordPress plugin Display Terms Shortcode (vulnerable: 1.0.4 and earlier). The issue stems from improper input neutralization during page generation, enabling stored scripts. Public sources identify the affected plugin versions as <= 1.0.4; remediation deta...
WordPress Display Terms Shortcode Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)
Software Display Terms Shortcode Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51610 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 332217e00b2c Credits SOPROBRO Required privilege...