CVE-2024-10184 | StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress Shortcode sw-kick-embed cross site scripting

Inserito da Angelo Barbosa | Ott 29, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress. This issue affects the function sw-kick-embed of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-10184. The attack may be initiated remotely. There is no exploit available.

CVE-2024-10184 | StreamWeasels Kick Integration Plugin up to 1.1.1 on WordPress Shortcode sw-kick-embed cross site scripting

Post correlati

CVE-2024-4076 | ISC BIND 9 up to 9.19.24 Client Query assertion

CVE-2024-3482 | OpenText ArcSight Enterprise Security Manager cross site scripting

CVE-2024-22279 | Cloud Foundry Routing Release up to 0.297.0 request smuggling

CVE-2023-3416 | tagDiv Opt-In Builder Plugin up to 1.4.4 on WordPress sql injection