CVE-2024-0256 | cifi Starbox Plugin up to 3.4.8 on WordPress Profile Display Name/Social Settings cross site scripting (ID 3029599)

Posted by Angelo Barbosa | Feb 7, 2024 | CVE

A vulnerability has been found in cifi Starbox Plugin up to 3.4.8 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Profile Display Name/Social Settings. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-0256. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-0256 | cifi Starbox Plugin up to 3.4.8 on WordPress Profile Display Name/Social Settings cross site scripting (ID 3029599)

Related Posts

CVE-2023-52179 | WebCodingPlace Product Expiry for WooCommerce Plugin up to 2.5 on WordPress authorization

CVE-2024-33584 | Deepen Bajracharya Video Conferencing with Zoom Plugin up to 4.4.4 on WordPress redirect

CVE-2024-24783 | crypto-x509 up to 1.21.7/1.22.0 on Go Certificate Chain crypto/tls null pointer dereference

CVE-2024-5726 | Timeline Event History Plugin up to 3.1 on WordPress code injection