CVE-2024-3494 | Mesmerize Companion Plugin up to 1.6.148 on WordPress Shortcode mesmerize_contact_form cross site scripting

Posted by Angelo Barbosa | May 7, 2024 | CVE

A vulnerability has been found in Mesmerize Companion Plugin up to 1.6.148 on WordPress and classified as problematic. This vulnerability affects the function mesmerize_contact_form of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-3494. The attack can be initiated remotely. There is no exploit available.

CVE-2024-3494 | Mesmerize Companion Plugin up to 1.6.148 on WordPress Shortcode mesmerize_contact_form cross site scripting

Related Posts

CVE-2024-3191 | MailCleaner up to 2023.03.14 Email os command injection (MZ-24-01)

CVE-2024-45698 | D-Link DIR-X4860 A1 1.00/1.04 Telnet Service os command injection

CVE-2024-44060 | Jennifer Hall Filmix Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-27377 | Samsung Exynos 1330 slsi_nan_get_security_info_nl heap-based overflow