CVE-2024-10056 | Contact Form Builder Plugin up to 4.10.4 on WordPress Shortcode livesite-pay cross site scripting

Inserito da Angelo Barbosa | Dic 5, 2024 | CVE

A vulnerability classified as problematic was found in Contact Form Builder Plugin up to 4.10.4 on WordPress. Affected by this vulnerability is the function livesite-pay of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10056. The attack can be launched remotely. There is no exploit available.

CVE-2024-10056 | Contact Form Builder Plugin up to 4.10.4 on WordPress Shortcode livesite-pay cross site scripting

Post correlati

CVE-2024-41346 | openflights 5234b5b php/submit.php cross site scripting

CVE-2022-48835 | Linux Kernel up to 5.10.107/5.15.30/5.16.16 mpt3sas mpt3sas_base_sync_reply_irqs memory corruption

CVE-2024-27104 | GLPI up to 10.0.12 Dashboard cross site scripting

CVE-2024-20748 | Adobe Acrobat 2020 out-of-bounds (apsb24-07)