CVE-2024-12595 | AHAthat Plugin up to 1.6 on WordPress REQUEST_URI cross site scripting

Inserito da Angelo Barbosa | Gen 2, 2025 | CVE

A vulnerability was found in AHAthat Plugin up to 1.6 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation of the argument REQUEST_URI leads to cross site scripting.

This vulnerability is traded as CVE-2024-12595. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-12595 | AHAthat Plugin up to 1.6 on WordPress REQUEST_URI cross site scripting

Post correlati

CVE-2024-13024 | Codezips Blood Bank Management System 1.0 /campaign.php cname sql injection

CVE-2023-48122 | Microweber 2.0.1/2.0.2/2.0.3 HTTP GET Request information disclosure (Issue 1042)

CVE-2023-32244 | XTemos Woodmart Core Plugin up to 1.0.36 on WordPress privileges management

CVE-2023-50724 | resque Gem prior 2.1.0 on Ruby cross site scripting