4 matches found
CVE-2024-38684
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in FunnelKit SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels allows Stored XSS.This issue affects SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels: from n/a throu...
CVE-2024-38684 WordPress SlingBlocks plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in FunnelKit SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels allows Stored XSS.This issue affects SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels: from n/a throu...
CVE-2024-38684 WordPress SlingBlocks plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in FunnelKit SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels allows Stored XSS.This issue affects SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels: from n/a throu...
WordPress SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)
Software SlingBlocks – Gutenberg Blocks by FunnelKit Formerly WooFunnels Type Plugin Vulnerable versions = 1.4.1 Fixed in 1.5.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38684 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5f158ad570d...