CVE-2024-1775 | Nextend Social Login and Register Plugin up to 3.1.12 on WordPress error_description cross site scripting

Posted by Angelo Barbosa | Mar 2, 2024 | CVE

A vulnerability was found in Nextend Social Login and Register Plugin up to 3.1.12 on WordPress. It has been declared as problematic. This vulnerability affects the function error_description. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-1775. The attack can be initiated remotely. There is no exploit available.

CVE-2024-1775 | Nextend Social Login and Register Plugin up to 3.1.12 on WordPress error_description cross site scripting

Related Posts

CVE-2023-49270 | Kashipara Group Hotel Management 1.0 reservation.php check_in_date cross site scripting

CVE-2024-41588 | DrayTek Vigor3910 up to 4.3.2.6 CGI Endpoint v2x00.cgi strncpy buffer overflow

CVE-2024-51093 | Snipe-IT 7.0.13 #files cross site scripting

CVE-2023-49930 | Couchbase Server up to 7.2.3 cURL /diag/eval access control