CVE-2024-13362 | BlockSpare Plugin on WordPress Parameter url cross site scripting

Inserito da Angelo Barbosa | Mag 1, 2026 | CVE

A vulnerability categorized as problematic has been discovered in BlockSpare Plugin on WordPress. This affects an unknown function of the component Parameter Handler. The manipulation of the argument url results in cross site scripting.

This vulnerability is reported as CVE-2024-13362. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2024-13362 | BlockSpare Plugin on WordPress Parameter url cross site scripting

Post correlati

CVE-2025-0924 | melapress WP Activity Log Plugin up to 5.2.2 on WordPress cross site scripting

CVE-2026-27153 | Discourse up to 2025.12.1/2026.1.0 CSV Export Endpoint authorization (GHSA-5cp2-jq8m-33mf)

CVE-2026-35042 | nearform fast-jwt crit Header Extension data authenticity

CVE-2023-6934 | Limit Login Attempts Reloaded Plugin up to 2.25.26 on WordPress Shortcode cross site scripting