CVE-2024-11876 | yoannr35 Kredeum NFTs Plugin up to 1.6.9 on WordPress Shortcode kredeum_opensky cross site scripting

Inserito da Angelo Barbosa | Dic 14, 2024 | CVE

A vulnerability was found in yoannr35 Kredeum NFTs Plugin up to 1.6.9 on WordPress. It has been classified as problematic. This affects the function kredeum_opensky of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-11876. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-11876 | yoannr35 Kredeum NFTs Plugin up to 1.6.9 on WordPress Shortcode kredeum_opensky cross site scripting

Post correlati

CVE-2024-40453 | squirrellyjs squirrelly 9.0.0 options.varName code injection

CVE-2024-5611 | Stratum Plugin up to 1.4.1 on WordPress Countdown Widget cross site scripting

CVE-2023-7043 | ESET Endpoint Security unquoted search path

CVE-2023-45734 | OpenHarmony up to 3.2.4/4.0.0 out-of-bounds write