CVE-2024-13563 | rustaurius Front End Users Plugin up to 3.2.30 on WordPress Shortcode forgot-password cross site scripting

Inserito da Angelo Barbosa | Feb 15, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in rustaurius Front End Users Plugin up to 3.2.30 on WordPress. Affected by this issue is the function forgot-password of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-13563. The attack may be launched remotely. There is no exploit available.

CVE-2024-13563 | rustaurius Front End Users Plugin up to 3.2.30 on WordPress Shortcode forgot-password cross site scripting

Post correlati

CVE-2024-0127 | NVIDIA vGPU/Cloud Gaming prior 16.8/17.4 GPU Kernel Driver Local Privilege Escalation

CVE-2023-52754 | Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2 media imon_context memory corruption

CVE-2024-28752 | Apache CXF up to 3.5.7/3.6.2/4.0.3 Aegis Databinding server-side request forgery

CVE-2024-7700 | Red Hat Satellite 6 Host Init Config Template Install Packages command injection