Biteship plugin version 2.2.25 reflects Cross-Site Scripting via biteship_error and biteship_message parameters due to insufficient input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
Prion | Cross site scripting | 5 Feb 202406:15 | – | prion |
Patchstack | WordPress Biteship Plugin <= 2.2.24 is vulnerable to Cross Site Scripting (XSS) | 2 Feb 202400:00 | – | patchstack |
NVD | CVE-2024-24866 | 5 Feb 202406:15 | – | nvd |
CVE | CVE-2024-24866 | 5 Feb 202406:15 | – | cve |
Vulnrichment | CVE-2024-24866 WordPress Biteship Plugin <= 2.2.24 is vulnerable to Cross Site Scripting (XSS) | 5 Feb 202406:02 | – | vulnrichment |
Cvelist | CVE-2024-24866 WordPress Biteship Plugin <= 2.2.24 is vulnerable to Cross Site Scripting (XSS) | 5 Feb 202406:02 | – | cvelist |
Wordfence Blog | Wordfence Intelligence Weekly WordPress Vulnerability Report (January 29, 2024 to February 4, 2024) | 8 Feb 202414:49 | – | wordfence |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo