CVE-2024-4361 | SiteOrigin Page Builder Plugin up to 2.29.15 on WordPress Shortcode siteorigin_widget cross site scripting

Posted by Angelo Barbosa | May 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in SiteOrigin Page Builder Plugin up to 2.29.15 on WordPress. This issue affects the function siteorigin_widget of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-4361. The attack may be initiated remotely. There is no exploit available.

CVE-2024-4361 | SiteOrigin Page Builder Plugin up to 2.29.15 on WordPress Shortcode siteorigin_widget cross site scripting

Related Posts

CVE-2024-4077 | AndonDesign UDesign Plugin up to 4.7.3 on WordPress cross site scripting

CVE-2024-22234 | VMware Spring Security up to 6.1.6/6.2.1 AuthenticationTrustResolver.isFullyAuthenticated access control

CVE-2024-0959 | StanfordVL GibsonEnv 0.3.1 pposgd_fuse.py cloudpickle.load deserialization

CVE-2024-8523 | lmxcms up to 1.4 SQL Command Execution Module admin.php formatData data code injection