CVE-2024-10180 | Contact Form 7 Plugin up to 2.0.1 on WordPress Shortcode field_group cross site scripting

Inserito da Angelo Barbosa | Ott 24, 2024 | CVE

A vulnerability was found in Contact Form 7 Plugin up to 2.0.1 on WordPress. It has been classified as problematic. Affected is the function field_group of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-10180. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-10180 | Contact Form 7 Plugin up to 2.0.1 on WordPress Shortcode field_group cross site scripting

Post correlati

CVE-2024-7315 | Migration, Backup, Staging Plugin up to 0.9.105 on WordPress Filename random values

CVE-2024-24824 | Graylog2 Server up to 5.1.10/5.2.3 HTTP PUT Request authorization (GHSA-p6gg-5hf4-4rgj)

CVE-2024-45096 | IBM Aspera Faspex up to 5.0.9 exposure of information through directory listing

CVE-2024-30398 | Juniper Junos OS up to 23.2R1-S2 Packet Forwarding Engine memory corruption (JSA79176)