CVE-2024-4000 | Header Builder Plugin up to 1.3.6 on WordPress Shortcode cross site scripting

Posted by Angelo Barbosa | Apr 30, 2024 | CVE

A vulnerability classified as problematic has been found in Header Builder Plugin up to 1.3.6 on WordPress. This affects an unknown part of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-4000. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-4000 | Header Builder Plugin up to 1.3.6 on WordPress Shortcode cross site scripting

Related Posts

CVE-2023-50712 | dfir-iris iris-web up to 2.3.6 cross site scripting (GHSA-593r-747g-p92p)

CVE-2024-5063 | PHPGurukul Online Course Registration System 3.1 /admin/index.php username/password sql injection

CVE-2024-29737 | Apache StreamPark up to 2.1.3 Project Module command injection

CVE-2023-6522 | ExtremePacs Extreme XDS up to 3913 privileges management