2 matches found
CVE-2024-9208
creationtimestamp| type| source ---|---|--- 2025-01-07 04:37:00+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/306 2025-01-07 05:17:34+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4vigh5vm25 2025-01-07 05:53:10+00:00| seen|...
CVE-2024-9208 Enable Accessibility <= 1.4.1 - Reflected Cross-Site Scripting
The Enable Accessibility plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg & removequeryarg without appropriate escaping on the URL in all versions up to, and including, 1.4.1. This makes it possible for unauthenticated attackers to inject arbitrar...