CVE-2024-10176 | Compact WP Audio Player Plugin up to 1.9.13 on WordPress Shortcode sc_embed_player cross site scripting

Posted by Angelo Barbosa | Oct 24, 2024 | CVE

A vulnerability was found in Compact WP Audio Player Plugin up to 1.9.13 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function sc_embed_player of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10176. The attack can be launched remotely. There is no exploit available.

CVE-2024-10176 | Compact WP Audio Player Plugin up to 1.9.13 on WordPress Shortcode sc_embed_player cross site scripting

Related Posts

CVE-2024-26760 | Linux Kernel up to 6.1.79/6.6.18/6.7.6 pscsi bio_put null pointer dereference

CVE-2024-5194 | Arris VAP2500 08.50 /assoc_table.php id command injection

CVE-2024-5527 | Zoho ManageEngine ADAudit Plus up to 8110 File Auditing Configuration sql injection

CVE-2024-43423 | Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE hard-coded password (icsa-24-268-04)