CVE-2024-37308 | XjSv Cooked Pro Recipe Plugin up to 1.7.15.4 on WordPress _recipe_settings[post_title] cross site scripting (GHSA-9vfv-c966-jwrv)

Posted by Angelo Barbosa | Jun 13, 2024 | CVE

A vulnerability has been found in XjSv Cooked Pro Recipe Plugin up to 1.7.15.4 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument _recipe_settings[post_title] leads to cross site scripting.

This vulnerability was named CVE-2024-37308. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37308 | XjSv Cooked Pro Recipe Plugin up to 1.7.15.4 on WordPress _recipe_settings[post_title] cross site scripting (GHSA-9vfv-c966-jwrv)

Related Posts

CVE-2023-51099 | Tenda W9 1.0.0.7(4456)_CN formexeCommand command injection

CVE-2024-41012 | Linux Kernel up to 6.9.8 filelock fcntl_setlk use after free (b6d223942c34/3cad1bc01041)

CVE-2024-28799 | IBM QRadar Suite Software/Cloud Pak for Security Back-End Command unknown vulnerability (XFDB-287173)

CVE-2024-0848 | AA Cash Calculator Plugin up to 1.0 on WordPress Invoice cross site scripting