2 matches found
PT-2025-5608
Name of the Vulnerable Software and Affected Versions Vitest versions prior to 1.6.1 Vitest versions prior to 2.1.9 Vitest versions prior to 3.0.5 Description The issue is related to arbitrary remote code execution when accessing a malicious website while the Vitest API server is listening, due t...
WordPress Custom Add to Cart Button Label and Link Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS)
Software Custom Add to Cart Button Label and Link Type Plugin Vulnerable versions = 1.6.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49296 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 21931c0098d9 Credits LVT-tholv2k...