CVE-2024-13859 | Buddyboss Platform Plugin up to 2.8.50 on WordPress bp_nouveau_ajax_media_save cross site scripting

Inserito da Angelo Barbosa | Mag 1, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Buddyboss Platform Plugin up to 2.8.50 on WordPress. This affects the function bp_nouveau_ajax_media_save. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-13859. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-13859 | Buddyboss Platform Plugin up to 2.8.50 on WordPress bp_nouveau_ajax_media_save cross site scripting

Post correlati

CVE-2024-5758 | wpxpo PostX Plugin up to 4.0.4 on WordPress filterMobileText cross site scripting

CVE-2024-11589 | itsourcecode Tailoring Management System 1.0 /expcatedit.php id sql injection

CVE-2024-23838 | TrueLayer prior 1.6.0 server-side request forgery

CVE-2025-1355 | needyamin Library Card System 1.0 Add Picture /signup.php unrestricted upload