Lucene search

K

CVE-2024-10832 Posti Shipping <= 3.10.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting via generate_notices_html Function

🗓️ 04 Dec 2024 02:24:40Reported by WordfenceType 
vulnrichment
 vulnrichment
🔗 github.com👁 3 Views

Posti Shipping plugin for WordPress CVE-2024-10832 vulnerability due to missing or incorrect nonce validation on generate notices_html() function allowing Cross-Site Request Forgery to Stored Cross-Site Scripting

Show more
Related
Refs
04 Dec 2024 02:40Current
6.4Medium risk
Vulners AI Score6.4
CVSS36.1
EPSS0.001
SSVC
3
.json
Report