CVE-2024-10184 | StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress Shortcode sw-kick-embed cross site scripting

Inserito da Angelo Barbosa | Ott 29, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress. This issue affects the function sw-kick-embed of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-10184. The attack may be initiated remotely. There is no exploit available.

CVE-2024-10184 | StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress Shortcode sw-kick-embed cross site scripting

Post correlati

CVE-2024-36999 | Autodesk AutoCAD 3DM File Parser out-of-bounds write

CVE-2024-32864 | Johnson Controls exacqVision Web Service up to 24.03 cleartext transmission (icsa-24-214-04)

CVE-2024-27245 | Zoom Workplace Desktop App buffer overflow

CVE-2024-23663 | Fortinet FortiExtender up to 7.0.4/7.2.4/7.4.2 HTTP access control (FG-IR-23-459)