CVE-2024-12817 | coreymcollins Etsy Importer Plugin up to 1.4.2 on WordPress Shortcode product_link cross site scripting

Posted by Angelo Barbosa | Jan 25, 2025 | CVE

A vulnerability was found in coreymcollins Etsy Importer Plugin up to 1.4.2 on WordPress and classified as problematic. Affected by this issue is the function product_link of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-12817. The attack may be launched remotely. There is no exploit available.

CVE-2024-12817 | coreymcollins Etsy Importer Plugin up to 1.4.2 on WordPress Shortcode product_link cross site scripting

Related Posts

CVE-2021-28656 | Apache Zeppelin up to 0.9.0 Credential Page cross-site request forgery

CVE-2024-12727 | Sophos Firewall up to 21.0 Secure PDF eXchange Configuration sql injection

CVE-2024-39307 | Kareadita Kavita up to 0.8.0 cross site scripting (GHSA-r4qc-3w52-2v84)

CVE-2024-7307 | SourceCodester Establishment Billing Management System 1.0 /manage_billing.php id sql injection