CVE-2024-10181 | Newsletters Plugin up to 4.9.9.4 on WordPress Shortcode newsletters_video cross site scripting

Posted by Angelo Barbosa | Oct 29, 2024 | CVE

A vulnerability was found in Newsletters Plugin up to 4.9.9.4 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function newsletters_video of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-10181. The attack can be launched remotely. There is no exploit available.

CVE-2024-10181 | Newsletters Plugin up to 4.9.9.4 on WordPress Shortcode newsletters_video cross site scripting

Related Posts

CVE-2024-49622 | APA Banner Slider Plugin up to 1.0.0 on WordPress cross-site request forgery

CVE-2024-2558 | Tenda AC18 15.03.05.05 /goform/execCommand formexeCommand cmdinput stack-based overflow

CVE-2024-38531 | NixOS nix up to 2.23.0 insecure preserved inherited permissions

CVE-2024-10726 | mainichiweb Friendly Functions for Welcart Plugin up to 1.2.4 on WordPress Setting cross-site request forgery