Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:50 a.m.11 views

CVE-2024-5802

The URL Shortener by Myhop WordPress plugin through 1.0.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

6.1CVSS6AI score0.00403EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/09 6:0 a.m.22 views

CVE-2024-5802 URL Shortener by MyThemeShop <= 1.0.17 - Admin+ Stored XSS

The URL Shortener by Myhop WordPress plugin through 1.0.17 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

0.00403EPSS
Exploits1References1
CVE
CVE
added 2024/07/09 6:0 a.m.52 views

CVE-2024-5802

The CVE-2024-5802 entry applies to the WordPress plugin URL Shortener by Myhop (also cited as MyThemeShop) for versions

6.1CVSS4.8AI score0.00403EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/07/09 12:0 a.m.8 views

WordPress URL Shortener by MyThemeShop Plugin <= 1.0.17 is vulnerable to Cross Site Scripting (XSS)

Software URL Shortener by MyThemeShop Type Plugin Vulnerable versions = 1.0.17 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5802 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 171657501903 Credits Sandeep...

6.1CVSS5.8AI score0.00403EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder