CVE-2024-13431 | croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress accent_color/background parameter cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability classified as problematic was found in croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress. This vulnerability affects unknown code. The manipulation of the argument accent_color/background parameter leads to cross site scripting.

This vulnerability was named CVE-2024-13431. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13431 | croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress accent_color/background parameter cross site scripting

Post correlati

CVE-2024-40865 | Apple visionOS up to 1.2 Virtual Keyboard Privilege Escalation

CVE-2024-28435 | Twenty 0.3.0 File Upload server-side request forgery

CVE-2024-8726 | MailMunch MailChimp Forms Plugin up to 3.2.3 on WordPress cross site scripting

CVE-2024-11073 | SourceCodester Hospital Management System 1.0 delete-account.php id improper authorization