5 matches found
CVE-2024-9830
The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...
CVE-2024-9830
creationtimestamp| type| source ---|---|--- 2024-11-19 12:51:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113509707169412815 2024-11-19 15:08:13+00:00| seen| https://t.me/cvedetector/11445...
CVE-2024-9830 Bard <= 2.216 - Reflected Cross-Site Scripting via add_query_arg Parameter
The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...
CVE-2024-9830 Bard <= 2.216 - Reflected Cross-Site Scripting via add_query_arg Parameter
The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...
WordPress Bard Theme <= 2.216 is vulnerable to Cross Site Scripting (XSS)
Software Bard Type Theme Vulnerable versions = 2.216 Fixed in 2.217 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9830 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43a6b249026a Credits vgo0 Required privilege...