CVE-2024-9895 | Smart Online Order for Clover Plugin up to 1.5.7 on WordPress Shortcode moo_receipt_link cross site scripting

Inserito da Angelo Barbosa | Ott 15, 2024 | CVE

A vulnerability was found in Smart Online Order for Clover Plugin up to 1.5.7 on WordPress and classified as problematic. This issue affects the function moo_receipt_link of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-9895. The attack may be initiated remotely. There is no exploit available.

CVE-2024-9895 | Smart Online Order for Clover Plugin up to 1.5.7 on WordPress Shortcode moo_receipt_link cross site scripting

Post correlati

CVE-2024-8364 | WP Custom Fields Search Plugin up to 1.2.35 on WordPress Shortcode wpcfs-preset cross site scripting

CVE-2024-34515 | spatie image-optimizer up to 1.7.2 Phar Deserialization file_exists deserialization (Issue 210)

CVE-2024-5163 | TECNO com.transsion.carlcare 5.8.1.4 Setting permission

CVE-2024-42351 | galaxyproject Galaxy up to 21.04 information disclosure (GHSA-5639-cmph-9j4v)