CVE-2024-34430 WordPress TT Custom Post Type Creator plugin <=1.0 - Cross Site Scripting (XSS) vulnerability

🗓️ 09 May 2024 11:09:12Reported by PatchstackType

Improper Neutralization of Input During Web Page Generation in TT Custom Post Type Creator plugi

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2024-34430	14 May 202415:39	–	nvd
WPVulnDB	TT Custom Post Type Creator <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting	16 May 202400:00	–	wpvulndb
CVE	CVE-2024-34430	14 May 202415:39	–	cve
Cvelist	CVE-2024-34430 WordPress TT Custom Post Type Creator plugin <=1.0 - Cross Site Scripting (XSS) vulnerability	9 May 202411:12	–	cvelist
Patchstack	WordPress TT Custom Post Type Creator Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)	6 May 202400:00	–	patchstack
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 6, 2024 to May 12, 2024)	16 May 202413:04	–	wordfence

Source	Link
patchstack	www.patchstack.com/database/vulnerability/tt-custom-post-type-creator/wordpress-tt-custom-post-type-creator-plugin-1-0-cross-site-scripting-xss-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 May 2024 11:12Current

6.7Medium risk

Vulners AI Score6.7

CVSS35.9

EPSS0.00074

SSVC

CWE-79