CVE-2024-12452 | oliverfriedmann Ziggeo Plugin up to 3.1 on WordPress Shortcode ziggeo_event cross site scripting

Posted by Angelo Barbosa | Feb 21, 2025 | CVE

A vulnerability classified as problematic was found in oliverfriedmann Ziggeo Plugin up to 3.1 on WordPress. This vulnerability affects the function ziggeo_event of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-12452. The attack can be initiated remotely. There is no exploit available.

CVE-2024-12452 | oliverfriedmann Ziggeo Plugin up to 3.1 on WordPress Shortcode ziggeo_event cross site scripting

Related Posts

CVE-2024-9072 | GDPR-Extensions Consent Manager Plugin up to 1.0.0 on WordPress SVG File Upload cross site scripting

CVE-2025-0146 | Zom Workplace App up to 6.2.9 on macOS symlink

CVE-2024-12773 | Altra Side Menu Plugin up to 2.0 on WordPress sql injection

CVE-2024-6823 | Media Library Assistant Plugin up to 3.18 on WordPress mla-inline-edit-upload-scripts unrestricted upload