4 matches found
CVE-2024-56299
creationtimestamp| type| source ---|---|--- 2025-01-07 11:16:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jl2vytt2a 2025-01-07 11:16:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jl2vytt2a 2025-01-07 12:55:19+00:00| seen|...
CVE-2024-56299 WordPress Notify Odoo plugin <= 1.0.0 - CSRF to Stored XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pektsekye Notify Odoo notify-odoo allows Stored XSS.This issue affects Notify Odoo: from n/a through = 1.0.0...
CVE-2024-56299
CVE-2024-56299 is a Cross-Site Scripting flaw in the Notify Odoo WordPress plugin (Pektsekye Notify Odoo) allowing Stored XSS via unsanitized input during web page generation. Affected range: Notify Odoo up to version 1.0.0. Public disclosures in connected sources confirm a CSRF-to-SXSS chain and...
CVE-2024-56299 WordPress Notify Odoo plugin <= 1.0.0 - CSRF to Stored XSS vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pektsekye Notify Odoo notify-odoo allows Stored XSS.This issue affects Notify Odoo: from n/a through = 1.0.0...