CVE-2024-12593 | Drag and Drop Template Builder Plugin up to 4.6.0 on WordPress Shortcode yeepdf_dotab cross site scripting

Posted by Angelo Barbosa | Jan 15, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Drag and Drop Template Builder Plugin up to 4.6.0 on WordPress. Affected is the function yeepdf_dotab of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-12593. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-12593 | Drag and Drop Template Builder Plugin up to 4.6.0 on WordPress Shortcode yeepdf_dotab cross site scripting

Related Posts

CVE-2024-22408 | Shopware up to 6.5.7.3 Flow Builder server-side request forgery (GHSA-3535-m8vh-vrmw)

CVE-2024-30951 | FUDforum 3.1.3 /adm/admsmiley.php chpos cross site scripting

CVE-2024-45159 | mbed TLS 3.6.0 TLS Client Authentication mbedtls_ssl_get_verify_result return value

CVE-2024-28515 | CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx lab3/buflab-update.pl buffer overflow