CVE-2024-10172 | voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress Shortcode void_wbwhmcse_laouts_search cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability has been found in voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress and classified as problematic. Affected by this vulnerability is the function void_wbwhmcse_laouts_search of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10172. The attack can be launched remotely. There is no exploit available.

CVE-2024-10172 | voidcoders WPBakery Visual Composer WHMCS Elements Plugin up to 1.0.4 on WordPress Shortcode void_wbwhmcse_laouts_search cross site scripting

Related Posts

CVE-2024-7262 | Kingsoft WPS Office up to 12.2.0.13489 on Windows Hyperlink promecefpluginhost.exe path traversal

CVE-2024-10921 | MongoDB Server up to 5.0.29/6.0.18/7.0.14/8.0.3 BSON Requests null byte or nul character

CVE-2024-6848 | BoldGrid Post and Page Builder Plugin up to 1.26.6 on WordPress File Upload cross site scripting

CVE-2023-48707 | CodeIgniter4 Shield up to 1.0.0-beta.7 HMAC SHA256 cleartext storage