Lucene search
K

4 matches found

Circl
Circl
added 2025/01/07 11:16 a.m.6 views

CVE-2024-56299

creationtimestamp| type| source ---|---|--- 2025-01-07 11:16:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jl2vytt2a 2025-01-07 11:16:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jl2vytt2a 2025-01-07 12:55:19+00:00| seen|...

7.1CVSS6.9AI score0.00314EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/07 10:49 a.m.6 views

CVE-2024-56299 WordPress Notify Odoo plugin <= 1.0.0 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pektsekye Notify Odoo notify-odoo allows Stored XSS.This issue affects Notify Odoo: from n/a through = 1.0.0...

7.1CVSS8.6AI score0.00314EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 10:49 a.m.40 views

CVE-2024-56299

CVE-2024-56299 is a Cross-Site Scripting flaw in the Notify Odoo WordPress plugin (Pektsekye Notify Odoo) allowing Stored XSS via unsanitized input during web page generation. Affected range: Notify Odoo up to version 1.0.0. Public disclosures in connected sources confirm a CSRF-to-SXSS chain and...

7.1CVSS7.2AI score0.00314EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/07 10:49 a.m.18 views

CVE-2024-56299 WordPress Notify Odoo plugin <= 1.0.0 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pektsekye Notify Odoo notify-odoo allows Stored XSS.This issue affects Notify Odoo: from n/a through = 1.0.0...

7.1CVSS0.00314EPSS
Exploits0References1
Rows per page
Query Builder