CVE-2024-3492 | Events Manager Plugin up to 6.4.7.3 on WordPress Shortcode event_category cross site scripting

Posted by Angelo Barbosa | Jun 12, 2024 | CVE

A vulnerability classified as problematic has been found in Events Manager Plugin up to 6.4.7.3 on WordPress. Affected is the function event_category of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-3492. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-3492 | Events Manager Plugin up to 6.4.7.3 on WordPress Shortcode event_category cross site scripting

Related Posts

CVE-2024-21478 | Qualcomm Snapdragon Auto up to SRV1M DMA type conversion

CVE-2023-49183 | NextScripts Social Networks Auto-Poster Plugin up to 4.4.2 on WordPress cross site scripting

CVE-2024-2880 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 Group Member admin_group_member access control (Issue 451921)

CVE-2024-2009 | Nway Pro 9 Argument loginindex.php ajax_login_submit_form rsargs[] information exposure