CVE-2024-11760 | falselight Currency Converter Widget Pro Plugin up to 1.0.6 on WordPress Shortcode currency-converter-widget-pro cross site scripting

Inserito da Angelo Barbosa | Dic 12, 2024 | CVE

A vulnerability has been found in falselight Currency Converter Widget Pro Plugin up to 1.0.6 on WordPress and classified as problematic. This vulnerability affects the function currency-converter-widget-pro of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-11760. The attack can be initiated remotely. There is no exploit available.

CVE-2024-11760 | falselight Currency Converter Widget Pro Plugin up to 1.0.6 on WordPress Shortcode currency-converter-widget-pro cross site scripting

Post correlati

CVE-2021-47169 | Linux Kernel up to 5.12.8 rp2 lib/dump_stack.c request_firmware null pointer dereference

CVE-2024-51569 | Apache NimBLE up to 1.7.0 HCI Event Parser out-of-bounds

CVE-2024-25026 | IBM WebSphere Application Server Request allocation of resources (XFDB-281516)

CVE-2024-2326 | Pretty Links Plugin up to 3.6.3 on WordPress Setting cross-site request forgery