Lucene search
K

5 matches found

NVD
NVD
added 2024/11/19 1:15 p.m.10 views

CVE-2024-9830

The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...

6.1CVSS0.00383EPSS
Exploits0References5
Circl
Circl
added 2024/11/19 12:51 p.m.11 views

CVE-2024-9830

creationtimestamp| type| source ---|---|--- 2024-11-19 12:51:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113509707169412815 2024-11-19 15:08:13+00:00| seen| https://t.me/cvedetector/11445...

6.1CVSS8.7AI score0.00383EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/19 12:45 p.m.20 views

CVE-2024-9830 Bard <= 2.216 - Reflected Cross-Site Scripting via add_query_arg Parameter

The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...

6.1CVSS0.00383EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/11/19 12:45 p.m.21 views

CVE-2024-9830 Bard <= 2.216 - Reflected Cross-Site Scripting via add_query_arg Parameter

The Bard theme for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.216. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execut...

6.1CVSS6.4AI score0.00383EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/11/19 12:0 a.m.16 views

WordPress Bard Theme <= 2.216 is vulnerable to Cross Site Scripting (XSS)

Software Bard Type Theme Vulnerable versions = 2.216 Fixed in 2.217 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9830 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 43a6b249026a Credits vgo0 Required privilege...

6.1CVSS5.9AI score0.00383EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder