5 matches found
EUVD-2024-51712
Malicious code in bioql PyPI...
CVE-2024-13662 eHive Objects Image Grid <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The eHive Objects Image Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ehiveobjectsimagegrid' shortcode in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-13662 eHive Objects Image Grid <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The eHive Objects Image Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ehiveobjectsimagegrid' shortcode in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2024-13662
CVE-2024-13662 describes an authenticated Stored Cross-Site Scripting vulnerability in the WordPress plugin eHive Objects Image Grid (versions up to and including 2.4.1). The issue arises from insufficient input sanitization and output escaping in the shortcode ehive_objects_image_grid , allowing...
PT-2025-2239 · WordPress · Ehive Objects Image Grid
Name of the Vulnerable Software and Affected Versions: eHive Objects Image Grid plugin for WordPress versions up to, and including, 2.4.1 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'ehive objects image grid' shortcode due to insufficient input sanitization a...