CVE-2024-25098

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pascal Bajorat PB oEmbed HTML5 Audio – with Cache Support allows Stored XSS.This issue affects PB oEmbed HTML5 Audio – with Cache Support: from n/a through 2.6...

CVE-2024-25098

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pascal Bajorat PB oEmbed HTML5 Audio – with Cache Support allows Stored XSS.This issue affects PB oEmbed HTML5 Audio – with Cache Support: from n/a through 2.6...

CVE-2024-25098

PB oEmbed HTML5 Audio – with Cache Support (WordPress plugin by Pascal Bajorat) is affected by a stored Cross-Site Scripting (XSS) vulnerability due to improper input neutralization during web page generation. The issue affects versions n/a through 2.6. Exploitation details and patch status vary ...

PT-2024-20746 · Pascal Bajorat · Pascal Bajorat Pb Oembed Html5 Audio – With Cache Support

Name of the Vulnerable Software and Affected Versions: Pascal Bajorat PB oEmbed HTML5 Audio – with Cache Support versions n/a through 2.6 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means...

WordPress PB oEmbed HTML5 Audio Plugin <= 2.6 is vulnerable to Cross Site Scripting (XSS)

Software PB oEmbed HTML5 Audio Type Plugin Vulnerable versions = 2.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-25098 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID fd60f7f1dbad Credits Ngô Thiên An ancorn from VNPT-VCI...