CVE-2024-2946 | devitemsllc ShopLentor Plugin up to 2.8.4 on WordPress QR Code Widget cross site scripting

Inserito da Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability classified as problematic was found in devitemsllc ShopLentor Plugin up to 2.8.4 on WordPress. This vulnerability affects unknown code of the component QR Code Widget. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-2946. The attack can be initiated remotely. There is no exploit available.

CVE-2024-2946 | devitemsllc ShopLentor Plugin up to 2.8.4 on WordPress QR Code Widget cross site scripting

Post correlati

CVE-2024-26304 | Aruba ArubaOS 8.10.0.11/8.11.2.2/10.4.1.1/10.5.1.1 L2-L3 Management Service buffer overflow (ARUBA-PSA-2024-004)

CVE-2024-5812 | BeyondTrust BeyondInsight PasswordSafe prior 23.2.0.1293/23.3.0.959/24.1.1 API Request authentication spoofing

CVE-2024-35752 | Enea Overclokk Stellissimo Text Box Plugin up to 1.1.4 on WordPress cross site scripting

CVE-2024-40094 | GraphQL Java up to 19.10/20.8/21.4 ExecutableNormalizedFields denial of service