CVE-2024-10172 | voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress Shortcode void_wbwhmcse_laouts_search cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability has been found in voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress and classified as problematic. Affected by this vulnerability is the function void_wbwhmcse_laouts_search of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10172. The attack can be launched remotely. There is no exploit available.

CVE-2024-10172 | voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress Shortcode void_wbwhmcse_laouts_search cross site scripting

Related Posts

CVE-2024-39745 | IBM Sterling Connect Direct Web Services 6.0/6.1/6.2/6.3 risky encryption (XFDB-297312)

CVE-2024-42351 | galaxyproject Galaxy up to 21.04 information disclosure (GHSA-5639-cmph-9j4v)

CVE-2024-50317 | Ivanti Avalanche up to 6.4.5 null pointer dereference

CVE-2024-31409 | CyberPower PowerPanel up to 4.9.0 MQTT Wildcard improper authorization (icsa-24-123-01)