CVE-2024-1775 | Nextend Social Login and Register Plugin up to 3.1.12 on WordPress error_description cross site scripting

Inserito da Angelo Barbosa | Mar 2, 2024 | CVE

A vulnerability was found in Nextend Social Login and Register Plugin up to 3.1.12 on WordPress. It has been declared as problematic. This vulnerability affects the function error_description. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-1775. The attack can be initiated remotely. There is no exploit available.

CVE-2024-1775 | Nextend Social Login and Register Plugin up to 3.1.12 on WordPress error_description cross site scripting

Post correlati

CVE-2024-20044 | MediaTek MT8798 Da out-of-bounds write (ALPS08541784)

CVE-2023-52339 | libebml up to 1.4.4 MemIOCallback.cpp integer overflow (Issue 147)

CVE-2024-10588 | Debug Tool Plugin up to 2.2 on WordPress authorization

CVE-2023-48834 | PHP Jabbers Car Rental 3.0 pjActionAjaxSend resource consumption