CVE-2024-12523 | wssoffice21 States Map US Plugin up to 2.4.2 on WordPress Shortcode states_map cross site scripting

Inserito da Angelo Barbosa | Dic 14, 2024 | CVE

A vulnerability classified as problematic has been found in wssoffice21 States Map US Plugin up to 2.4.2 on WordPress. Affected is the function states_map of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-12523. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-12523 | wssoffice21 States Map US Plugin up to 2.4.2 on WordPress Shortcode states_map cross site scripting

Post correlati

CVE-2024-34671 | Samsung Internet up to 26.0.3.0 Translation implicit intent

CVE-2024-2890 | Tumult Hype Animations Plugin up to 1.9.12 on WordPress unrestricted upload

CVE-2024-21785 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 Telnet Diagnostic Interface debug code (icsa-24-144-01)

CVE-2024-43129 | WPDeveloper BetterDocs Plugin up to 3.5.8 on WordPress path traversal