CVE-2024-12591 | wbolt MagicPost Plugin up to 1.2.1 on WordPress Shortcode wb_share_social cross site scripting

Posted by Angelo Barbosa | Dec 21, 2024 | CVE

A vulnerability was found in wbolt MagicPost Plugin up to 1.2.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function wb_share_social of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-12591. The attack can be launched remotely. There is no exploit available.

CVE-2024-12591 | wbolt MagicPost Plugin up to 1.2.1 on WordPress Shortcode wb_share_social cross site scripting

Related Posts

CVE-2024-40505 | D-Link DAP-1650 1.03 hedwig.cgi path traversal

CVE-2024-21919 | Rockwell Automation Arena Simulation up to 16.20.02 uninitialized pointer

CVE-2024-41819 | enchant97 note-mark up to 0.13.0 URL cross site scripting (GHSA-rm48-9mqf-8jc3)

CVE-2024-0700 | Simple Tweet Plugin up to 1.4.0.2 on WordPress cross site scripting