CVE-2024-5713 | If-So Dynamic Content Personalization Plugin up to 1.8.0.3 on WordPress Attribute $_SERVER[‘REQUEST_URI’] cross site scripting

Inserito da Angelo Barbosa | Lug 13, 2024 | CVE

A vulnerability classified as problematic has been found in If-So Dynamic Content Personalization Plugin up to 1.8.0.3 on WordPress. Affected is an unknown function of the component Attribute Handler. The manipulation of the argument $_SERVER[‘REQUEST_URI’] leads to cross site scripting.

This vulnerability is traded as CVE-2024-5713. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5713 | If-So Dynamic Content Personalization Plugin up to 1.8.0.3 on WordPress Attribute $_SERVER[‘REQUEST_URI’] cross site scripting

Post correlati

CVE-2024-7192 | itsourcecode Society Management System 1.0 /admin/student.php image unrestricted upload

CVE-2024-1463 | LearnPress Plugin up to 4.2.6.3 on WordPress cross site scripting

CVE-2024-29725 | SportsNET 4.0.1 /app/ax/sort_bloques/ list sql injection

CVE-2024-27991 | SupportCandy Plugin up to 3.2.3 on WordPress cross site scripting