CVE-2024-10682 | mikewire_rocksolid Announcement & Notification Banner Plugin up to 3.11.7 on WordPress add_query_arg cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability classified as problematic has been found in mikewire_rocksolid Announcement & Notification Banner Plugin up to 3.11.7 on WordPress. This affects the function add_query_arg. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-10682. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-10682 | mikewire_rocksolid Announcement & Notification Banner Plugin up to 3.11.7 on WordPress add_query_arg cross site scripting

Related Posts

CVE-2024-42323 | Apache HertzBeat up to 1.5.x snakeYaml Privilege Escalation

CVE-2024-5459 | Restaurant Menu and Food Ordering Plugin up to 2.4.16 on WordPress Menu Creation authorization

CVE-2024-5043 | Emlog Pro 2.3.4 admin/setting.php unrestricted upload

CVE-2024-37000 | Autodesk AutoCAD X_T File Parser out-of-bounds write