CVE-2024-12460 | laurencebahiirwa Years Since Plugin up to 1.4.1 on WordPress Shortcode years-since cross site scripting

Inserito da Angelo Barbosa | Mar 8, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in laurencebahiirwa Years Since Plugin up to 1.4.1 on WordPress. Affected by this issue is the function years-since of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-12460. The attack may be launched remotely. There is no exploit available.

CVE-2024-12460 | laurencebahiirwa Years Since Plugin up to 1.4.1 on WordPress Shortcode years-since cross site scripting

Post correlati

CVE-2024-43768 | Google Android 12/12L/13/14/15 SkDeflate.cpp skia_alloc_func out-of-bounds write

CVE-2024-39879 | JetBrains TeamCity up to 2024.03.2 EC2 Cloud Profile Setting insufficiently protected credentials

CVE-2024-1804 | Tutor LMS Plugin up to 2.2.0 on WordPress tutor_import_from_xml authorization

CVE-2024-53859 | cli go-gh up to 2.11.0 Environment Variable information disclosure