CVE-2024-0625 | WPFront Notification Bar up to 3.3.2 on WordPress wpfront-notification-bar-options[custom_class] cross site scripting

Posted by Angelo Barbosa | Jan 24, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in WPFront Notification Bar up to 3.3.2 on WordPress. Affected by this issue is some unknown functionality. The manipulation of the argument wpfront-notification-bar-options[custom_class] leads to cross site scripting.

This vulnerability is handled as CVE-2024-0625. The attack may be launched remotely. There is no exploit available.

CVE-2024-0625 | WPFront Notification Bar up to 3.3.2 on WordPress wpfront-notification-bar-options[custom_class] cross site scripting

Related Posts

CVE-2023-50905 | Melapress WP Activity Log Plugin up to 4.6.1 on WordPress cross site scripting

CVE-2024-24142 | SourceCodester Sourcecodester School Task Manager 1.0 subject sql injection

CVE-2024-23828 | 0xJacky nginx-ui up to 2.0.0.beta.11 test_config_cmd/start_cmd crlf injection (GHSA-qcjq-7f7v-pvc8)

CVE-2021-47099 | Linux Kernel up to 5.15.11 veth information disclosure (d2269ae48598/9695b7de5b47)