CVE-2024-3974 | BuddyPress Plugin up to 12.4.0 on WordPress cross site scripting

Posted by Angelo Barbosa | May 4, 2024 | CVE

A vulnerability was found in BuddyPress Plugin up to 12.4.0 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-3974. The attack can be launched remotely. There is no exploit available.

CVE-2024-3974 | BuddyPress Plugin up to 12.4.0 on WordPress cross site scripting

Related Posts

CVE-2024-27399 | Linux Kernel up to 6.8 Bluetooth l2cap_chan_timeout null pointer dereference (adf0398cee86)

CVE-2024-41184 | keepalived up to 2.3.1 fglobal_parser.c vrrp_ipsets_handler integer overflow (Issue 2447)

CVE-2024-1218 | kaliforms Contact Form Builder with Drag & Drop Plugin up to 2.3.41 on WordPress REST Endpoint authorization

CVE-2024-6284 | Google nftables up to 0.1.0 AddSet input validation (Issue 368)