CVE-2024-10552 | Flexmls IDX Plugin up to 3.14.26 on WordPress api_key/api_secret cross site scripting

Posted by Angelo Barbosa | Jan 25, 2025 | CVE

A vulnerability has been found in Flexmls IDX Plugin up to 3.14.26 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument api_key/api_secret leads to cross site scripting.

This vulnerability was named CVE-2024-10552. The attack can be initiated remotely. There is no exploit available.

CVE-2024-10552 | Flexmls IDX Plugin up to 3.14.26 on WordPress api_key/api_secret cross site scripting

Related Posts

CVE-2024-33217 | Tenda FH1206 1.2.0.8(8155)_EN ip/goform/addressNat page stack-based overflow

CVE-2024-24035 | Setor Informatica SIL 3.1 hmessage cross site scripting

CVE-2024-10308 | Jeg Elementor Kit Plugin up to 2.6.9 on WordPress JKit Countdown Widget cross site scripting

CVE-2024-2622 | Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 editemedia.php number/enterprise_uuid sql injection