CVE-2024-12038 | svenl77 Post Form Plugin up to 2.8.15 on WordPress Shortcode buddyforms_nav cross site scripting

Inserito da Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability was found in svenl77 Post Form Plugin up to 2.8.15 on WordPress. It has been classified as problematic. This affects the function buddyforms_nav of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-12038. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-12038 | svenl77 Post Form Plugin up to 2.8.15 on WordPress Shortcode buddyforms_nav cross site scripting

Post correlati

CVE-2024-34808 | Samuel Marshall JCH Optimize Plugin up to 4.2.0 on WordPress path traversal

CVE-2024-4360 | bdthemes Element Pack Elementor Addons Plugin up to 5.7.2 on WordPress Attribute title_tag cross site scripting

CVE-2024-23875 | Cups Easy 1.0 URL stockissuancedisplay.php cross site scripting

CVE-2024-12895 | TreasureHuntGame TreasureHunt up to 963e0e0 checkflag.php console_log problema sql injection