CVE-2024-5173 | HT Mega Plugin up to 2.5.5 on WordPress Video Player Widget Setting cross site scripting

Posted by Angelo Barbosa | Jun 25, 2024 | CVE

A vulnerability classified as problematic has been found in HT Mega Plugin up to 2.5.5 on WordPress. This affects an unknown part of the component Video Player Widget Setting. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-5173. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-5173 | HT Mega Plugin up to 2.5.5 on WordPress Video Player Widget Setting cross site scripting

Related Posts

CVE-2024-6137 | zephyrproject-rtos Zephyr up to 3.6 BT get_att_search_list out-of-bounds (GHSA-pm38-7g85-cf4f)

CVE-2024-46678 | Linux Kernel up to 6.6.48/6.10.7 bonding ipsec_lock state issue (6b598069164a/56354b0a2c24/2aeeef906d5a)

CVE-2024-44914 | Irfanview 4.67.1.0 EXR File ReadEXR denial of service

CVE-2024-3660 | Google TensorFlow up to 2.12 Keras Framework deserialization