CVE-2024-11381 | cesarmaeso Control horas Plugin up to 1.0.1 on WordPress Shortcode ch_registro cross site scripting

Posted by Angelo Barbosa | Nov 22, 2024 | CVE

A vulnerability has been found in cesarmaeso Control horas Plugin up to 1.0.1 on WordPress and classified as problematic. This vulnerability affects the function ch_registro of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-11381. The attack can be initiated remotely. There is no exploit available.

CVE-2024-11381 | cesarmaeso Control horas Plugin up to 1.0.1 on WordPress Shortcode ch_registro cross site scripting

Related Posts

CVE-2024-5469 | GitLab Community Edition/Enterprise Edition up to 16.10.5/16.11.2 KAS resource consumption (Issue 464143)

CVE-2021-47092 | Linux Kernel up to 5.15.11 VMX nested.c __vmx_handle_exit denial of service (e4e4e7cb2298/a80dfc025924)

CVE-2024-49402 | Samsung Mobile Devices Dressroom input validation

CVE-2024-0444 | Freedesktop GStreamer AV1 Video Parser stack-based overflow