WordPress Passwordless Login Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software Passwordless Login Type Plugin Vulnerable versions = 1.1.2 Fixed in 1.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29143 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 31d1f299fb2a Credits stealthcopter Required privilege...

Passwordless Login Plugin - Multiple Input XSS

The Passwordless Login WordPress plugin was affected by a Multiple Input XSS security vulnerability...