CVE-2024-11764 | covertcommunication Solar Wizard Lite Plugin up to 1.2.4 on WordPress Shortcode solar_wizard cross site scripting

Posted by Angelo Barbosa | Jan 7, 2025 | CVE

A vulnerability has been found in covertcommunication Solar Wizard Lite Plugin up to 1.2.4 on WordPress and classified as problematic. This vulnerability affects the function solar_wizard of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-11764. The attack can be initiated remotely. There is no exploit available.

CVE-2024-11764 | covertcommunication Solar Wizard Lite Plugin up to 1.2.4 on WordPress Shortcode solar_wizard cross site scripting

Related Posts

CVE-2024-25639 | khoj-ai khoj up to 1.12.x /online cross site scripting (GHSA-h2q2-vch3-72qm)

CVE-2024-41600 | Lin-CMS Springboot up to 0.2.1 UserController.java login information disclosure

CVE-2024-38361 | authzed spicedb up to 1.33.0 permissions (GHSA-grjv-gjgr-66g2)

CVE-2024-12967 | code-projects Job Recruitment 1.0 /_parse/_all_edits.php fln_update fname/lname sql injection