CVE-2024-10168 | realmag777 Active Products Tables for WooCommerce Plugin up to 1.0.6.4 on WordPress Shortcode woot_button cross site scripting

Inserito da Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability was found in realmag777 Active Products Tables for WooCommerce Plugin up to 1.0.6.4 on WordPress. It has been classified as problematic. This affects the function woot_button of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-10168. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-10168 | realmag777 Active Products Tables for WooCommerce Plugin up to 1.0.6.4 on WordPress Shortcode woot_button cross site scripting

Post correlati

CVE-2024-23941 | Intermesh Group Office up to 6.6.181/6.7.63/6.8.30 cross site scripting

CVE-2024-36670 | idcCMS 1.35 vpsClass_deal.php cross-site request forgery

CVE-2023-49164 | OceanWP Ocean Extra Plugin up to 2.2.2 on WordPress cross-site request forgery

CVE-2024-47764 | jshttp cookie up to 0.6.x injection (GHSA-pxg6-pf52-xh8x)