CVE-2024-10793 | WP Activity Log Plugin up to 5.2.1 on WordPress User_id cross site scripting

Inserito da Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability was found in WP Activity Log Plugin up to 5.2.1 on WordPress. It has been rated as problematic. This issue affects the function User_id. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-10793. The attack may be initiated remotely. There is no exploit available.

CVE-2024-10793 | WP Activity Log Plugin up to 5.2.1 on WordPress User_id cross site scripting

Post correlati

CVE-2024-31410 | CyberPower PowerPanel up to 4.9.0 hard-coded key (icsa-24-123-01)

CVE-2023-49081 | aio-libs aiohttp ClientSession crlf injection

CVE-2024-6789 | M-Files Server prior 24.8.13981.0/LTS 24.2.13421.15 API Endpoint path traversal

CVE-2024-36410 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 sql injection (GHSA-7jj8-m2wj-m6xq)