CVE-2024-5645 | Envo Extra Plugin up to 1.8.23 on WordPress Button Widget cross site scripting

Posted by Angelo Barbosa | Jun 7, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Envo Extra Plugin up to 1.8.23 on WordPress. This issue affects some unknown processing of the component Button Widget. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-5645. The attack may be initiated remotely. There is no exploit available.

CVE-2024-5645 | Envo Extra Plugin up to 1.8.23 on WordPress Button Widget cross site scripting

Related Posts

CVE-2024-3645 | Essential Addons for Elementor Pro Plugin up to 5.8.11 on WordPress title_html_tag cross site scripting

CVE-2023-45223 | Mattermost up to 7.8.12/8.1.3 Show Full Name Option information disclosure

CVE-2024-5341 | Plus Addons for Elementor Page Builder Plugin up to 5.5.4 on WordPress cross site scripting

CVE-2024-36074 | Netwrix CoSoSys Endpoint Protector/CoSoSys Unify EasyLock Privilege Escalation