Lucene search
WPScanVULNRICHMENT:CVE-2024-2729HistoryApr 18, 2024 - 5:00 a.m.
CVE-2024-2729 Otter Blocks < 2.6.6 - Contributor+ Stored XSS
2024-04-1805:00:02
WPScan
github.com
5
otter blocks wordpress plugin
stored xss attacks
contributor+
The Otter Blocks WordPress plugin before 2.6.6 does not properly escape its mainHeadings blocks’ attribute before appending it to the final rendered block, allowing contributors to conduct Stored XSS attacks.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:themeisle:otter_blocks:-:*:*:*:*:*:*:*"
],
"vendor": "themeisle",
"product": "otter_blocks",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
}
]Related
wpvulndb
wpvulndb
Otter Blocks < 2.6.6 - Contributor+ Stored XSS
2024-03-28 00:00:00
nvd
nvd
CVE-2024-2729
2024-04-18 05:15:48
wpexploit
wpexploit
Otter Blocks < 2.6.6 - Contributor+ Stored XSS
2024-03-28 00:00:00
cve
cve
CVE-2024-2729
2024-04-18 05:15:48
cvelist
cvelist
CVE-2024-2729 Otter Blocks < 2.6.6 - Contributor+ Stored XSS
2024-04-18 05:00:02
wordfence
wordfence
AI Score
5.8
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-2729