CVE-2024-2936 | Sydney Toolbox Plugin up to 1.26 on WordPress _id cross site scripting

Posted by Angelo Barbosa | Mar 28, 2024 | CVE

A vulnerability classified as problematic was found in Sydney Toolbox Plugin up to 1.26 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation of the argument _id leads to cross site scripting.

This vulnerability is known as CVE-2024-2936. The attack can be launched remotely. There is no exploit available.

CVE-2024-2936 | Sydney Toolbox Plugin up to 1.26 on WordPress _id cross site scripting

Related Posts

CVE-2024-7723 | Foxit PDF Reader AcroForm use after free (ZDI-24-1125)

CVE-2024-2602 | Schneider Electric FoxRTU Station prior 9.3.0 Project File path traversal (SEVD-2024-191-03)

CVE-2024-25958 | Dell Grab up to 5.0.4 on Windows default permission (dsa-2024-121)

CVE-2024-5613 | Formula Plugin up to 0.5.1 on WordPress quality_customizer_notify_dismiss_action cross site scripting