A vulnerability was found in Arena.IM Plugin up to 0.3.0 on WordPress. It has been classified as problematic. This affects the function arena_embed_amp of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-12463. It is possible to initiate the attack remotely. There is no exploit available.