CVE-2024-10164 | codename065 Premium Packages Plugin up to 5.9.3 on WordPress Shortcode wpdmpp_pay_link cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability was found in codename065 Premium Packages Plugin up to 5.9.3 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function wpdmpp_pay_link of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10164. The attack can be launched remotely. There is no exploit available.

CVE-2024-10164 | codename065 Premium Packages Plugin up to 5.9.3 on WordPress Shortcode wpdmpp_pay_link cross site scripting

Related Posts

CVE-2024-33872 | Keyfactor Command up to 10.5.0/11.5.0 sql injection

CVE-2024-45844 | F5 BIG-IP up to 15.1.10.4/16.1.4/17.1.1.3 Monitor missing authentication (K000140061)

CVE-2023-51101 | Tenda W9 1.0.0.7(4456)_CN formSetUplinkInfo stack-based overflow

CVE-2024-23902 | GitLab Branch Source Plugin up to 684.vea_fa_7c1e2fe3 on Jenkins POST Request cross-site request forgery