2 matches found
CVE-2024-0711
The CVE-2024-0711 issue affects the WordPress plugin Buttons Shortcode and Widget (versions up to 1.16). The vulnerability stems from failure to validate and escape certain shortcode attributes before output, enabling a Stored XSS when the shortcode is embedded in posts/pages. Impact scope includ...
CVE-2024-24930
CVE-2024-24930 is a stored XSS in the WordPress Buttons Shortcode and Widget plugin (