CVE-2024-13431 | croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress accent_color/background parameter cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability classified as problematic was found in croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress. This vulnerability affects unknown code. The manipulation of the argument accent_color/background parameter leads to cross site scripting.

This vulnerability was named CVE-2024-13431. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13431 | croixhaug Appointment Booking Calendar Plugin up to 1.6.8.3 on WordPress accent_color/background parameter cross site scripting

Post correlati

CVE-2024-41518 | Feripro up to 2.2.3 XLSX File statistics access control

CVE-2024-12995 | ruifang-tech Rebuild 3.8.6 Project Tasks Section tasks description cross site scripting

CVE-2024-31142 | Xen BTC SRSO Mitigation Privilege Escalation (XSA-455)

CVE-2024-41817 | ImageMagick up to 7.11-35 MAGICK_CONFIGURE_PATH/LD_LIBRARY_PATH uncontrolled search path (GHSA-8rxc-922v-phg8)