3 matches found
WordPress kbucket plugin < 4.1.5 - Reflected XSS vulnerability
Reflected XSS vulnerability discovered by Bob Matyas in WordPress Plugin KBucket versions 4.1.5...
CVE-2024-6667
The KBucket: Your Curated Content in WordPress plugin before 4.1.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against admin...
CVE-2024-6667
The CVE-2024-6667 entry concerns the WordPress plugin KBucket: Your Curated Content in WordPress. It states that versions prior to 4.1.5 do not sanitise or escape a parameter before outputting it on the page, leading to a Reflected XSS that could target admins. The CVSS v3.1 base score is 6.1 (Me...