CVE-2024-2691 | WP Event Manager Plugin up to 3.1.43 on WordPress Shortcode events cross site scripting

Posted by Angelo Barbosa | Jul 16, 2024 | CVE

A vulnerability was found in WP Event Manager Plugin up to 3.1.43 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function events of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-2691. The attack can be launched remotely. There is no exploit available.

CVE-2024-2691 | WP Event Manager Plugin up to 3.1.43 on WordPress Shortcode events cross site scripting

Related Posts

CVE-2024-30551 | Toast Plugins Sticky Anything Plugin up to 2.1.5 on WordPress cross site scripting

CVE-2024-23805 | F5 BIG-IP Advanced WAF/BIG-IP ASM up to 15.1.9/16.1.3/17.1.0 Traffic Management Microkernel buffer size (K30875743)

CVE-2024-1824 | CodeAstro House Rental Management System 1.0 signing.php uname/password sql injection

CVE-2024-36257 | Mattermost up to 9.5.5/9.8.0 Shared Channel access control