CVE-2024-5638 | Formula Plugin up to 0.5.1 on WordPress ti_customizer_notify_dismiss_recommended_plugins cross site scripting

Inserito da Angelo Barbosa | Giu 7, 2024 | CVE

A vulnerability was found in Formula Plugin up to 0.5.1 on WordPress. It has been declared as problematic. This vulnerability affects the function ti_customizer_notify_dismiss_recommended_plugins. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-5638. The attack can be initiated remotely. There is no exploit available.

CVE-2024-5638 | Formula Plugin up to 0.5.1 on WordPress ti_customizer_notify_dismiss_recommended_plugins cross site scripting

Post correlati

CVE-2023-48835 | PHP Jabbers Car Rental Script 3.0 Language Label Export csv injection

CVE-2024-38137 | Microsoft Windows up to Server 2022 23H2 Resource Manager PSM Service Extension use after free

CVE-2024-28135 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 API injection (VDE-2024-019)

CVE-2024-34025 | CyberPower PowerPanel up to 4.9.0 hard-coded password (icsa-24-123-01)