A vulnerability, which was classified as problematic, has been found in Securityforce Crypto and DeFi Widgets Plugin up to 1.1.6 on WordPress. This issue affects the function
add_query_arg
of the component Shortcode Handler. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-11365. The attack may be initiated remotely. There is no exploit available.