Lucene search
+L

4 matches found

Circl
Circl
added 2024/11/20 2:53 a.m.7 views

CVE-2024-51904

creationtimestamp| type| source ---|---|--- 2024-11-20 02:53:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113513017162946116...

6.5CVSS6.9AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2024/11/19 5:15 p.m.14 views

CVE-2024-51904

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joan Boluda Embed documents shortcode embed-documents-shortcode allows Stored XSS.This issue affects Embed documents shortcode: from n/a through = 1.5...

6.5CVSS0.00285EPSS
Exploits0References1
CVE
CVE
added 2024/11/19 4:31 p.m.51 views

CVE-2024-51904

CVE-2024-51904 is a Stored XSS in the WordPress plugin Embed documents shortcode (Joan Boluda) affecting versions 1.5 and earlier. Root cause: improper input neutralization during page generation. Impact: Stored cross-site scripting via the shortcode. Remediation: upgrade to version 1.5 or later ...

6.5CVSS7.2AI score0.00285EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/11/08 12:0 a.m.15 views

WordPress Embed documents shortcode Plugin <= 1.5 is vulnerable to Cross Site Scripting (XSS)

Software Embed documents shortcode Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-51904 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 13d94824e115 Credits SOPROBRO Required privilege...

6.5CVSS6.5AI score0.00285EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder