CVE-2024-6307 | WordPress up to 6.5.4 HTML API HTML injection (ID 58472)

Posted by Angelo Barbosa | Jun 25, 2024 | CVE

A vulnerability was found in WordPress up to 6.5.4. It has been classified as problematic. This affects an unknown part of the component HTML API. The manipulation leads to HTML injection.

This vulnerability is uniquely identified as CVE-2024-6307. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-6307 | WordPress up to 6.5.4 HTML API HTML injection (ID 58472)

Related Posts

CVE-2024-34420 | talspotim Comments Evolved for WordPress Plugin up to 1.6.3 on WordPress cross site scripting

CVE-2024-26649 | Linux Kernel up to 6.6.14/6.7.2 amdgpu_ucode_request null pointer dereference (8b5bacce2d13/d3887448486c/bc03c02cc199)

CVE-2024-28099 | Keyence VT Studio up to 8.32 untrusted search path

CVE-2024-38373 | FreeRTOS-Plus-TCP up to 4.1.0 DNS Response Parser length buffer over-read (GHSA-ppcp-rg65-58mv)