CVE-2024-5796 | Infinite Plugin up to 1.1.2 on WordPress project_url cross site scripting

Posted by Angelo Barbosa | Jun 27, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Infinite Plugin up to 1.1.2 on WordPress. Affected is an unknown function. The manipulation of the argument project_url leads to cross site scripting.

This vulnerability is traded as CVE-2024-5796. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-5796 | Infinite Plugin up to 1.1.2 on WordPress project_url cross site scripting

Related Posts

CVE-2024-29766 | StreamWeasels Twitch Integration Plugin up to 1.7.5 on WordPress cross site scripting

CVE-2024-8975 | Grafana Alloy up to 1.3.2/1.4.0-rc.1 on Windows unquoted search path

CVE-2024-28990 | SolarWinds Access Rights Manager up to 2024.3 RabbitMQ Management Console hard-coded credentials

CVE-2023-48288 | HM Plugin Job Board and Recruitment Plugin up to 2.1 on WordPress information disclosure