CVE-2024-10792 | getwpfunnels Easiest Funnel Builder for WordPress & WooCommerce Plugin cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability classified as problematic has been found in getwpfunnels Easiest Funnel Builder for WordPress & WooCommerce Plugin up to 3.5.4 on WordPress. This affects an unknown part. The manipulation of the argument post_id leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-10792. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10792 | getwpfunnels Easiest Funnel Builder for WordPress & WooCommerce Plugin cross site scripting

Related Posts

CVE-2024-8287 | Canonical Anbox Cloud up to 1.23.0 Management Service certificate validation

CVE-2023-6915 | Linux Kernel up to 6.7-rc6 lib/idr.c ida_free null pointer dereference

CVE-2024-35011 | idcCMS 1.35 infoType_deal.php cross-site request forgery

CVE-2024-53426 | ntopng 6.2 Flow::dissectMDNS heap-based overflow