CVE-2024-5199 | Spotify Play Button Plugin up to 1.0 on WordPress Shortcode cross site scripting

Posted by Angelo Barbosa | Jun 26, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Spotify Play Button Plugin up to 1.0 on WordPress. Affected is an unknown function of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-5199. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5199 | Spotify Play Button Plugin up to 1.0 on WordPress Shortcode cross site scripting

Related Posts

CVE-2024-3819 | Jeg Elementor Kit Plugin up to 2.6.4 on WordPress JKit Banner cross site scripting

CVE-2024-24788 | Google Go up to 1.21.9/1.22.2 net Lookup infinite loop

CVE-2024-0230 | Apple Magic Keyboard prior 2.0.6 Bluetooth Pairing user session

CVE-2024-2599 | Amssplus AMSS++ 4.31 unrestricted upload