CVE-2024-3558 | Custom Field Suite Plugin up to 2.6.7 on WordPress cfs[post_title] cross site scripting

Posted by Angelo Barbosa | Jun 19, 2024 | CVE

A vulnerability was found in Custom Field Suite Plugin up to 2.6.7 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation of the argument cfs[post_title] leads to cross site scripting.

This vulnerability is traded as CVE-2024-3558. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-3558 | Custom Field Suite Plugin up to 2.6.7 on WordPress cfs[post_title] cross site scripting

Related Posts

CVE-2024-5584 | Bookly Plugin up to 23.2 on WordPress Color Profile cross site scripting

CVE-2024-6704 | Comments Plugin up to 7.6.21 on WordPress cross site scripting

CVE-2024-29919 | Ays Photo Gallery Plugin up to 5.5.2 on WordPress cross site scripting

CVE-2024-42680 | Super Easy Enterprise Management System up to 1.0.0 Single Quotation Mark path traversal