CVE-2024-1046 | collizo4sky Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin Shortcode cross site scripting (ID 3030229)

Inserito da Angelo Barbosa | Feb 6, 2024 | CVE

A vulnerability was found in collizo4sky Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin up to 4.14.3 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-1046. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-1046 | collizo4sky Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin Shortcode cross site scripting (ID 3030229)

Post correlati

CVE-2024-4186 | Edwiser Bridge Plugin up to 3.0.5 on WordPress improper authentication

CVE-2023-49028 | smpn1smg absis up to 2017-10-19 lock/lock.php user cross site scripting

CVE-2024-3946 | WP To Do Plugin up to 1.3.0 on WordPress Setting cross site scripting

CVE-2024-7071 | Brain Information Technologies Brain Low-Code up to 2.0.x sql injection