CVE-2024-6346 | pickplugins Gutenberg Blocks, Page Builder Plugin up to 2.2.85a on WordPress Date Countdown Widget redirectURL cross site scripting

Posted by Angelo Barbosa | Aug 1, 2024 | CVE

A vulnerability classified as problematic was found in pickplugins Gutenberg Blocks, Page Builder Plugin up to 2.2.85a on WordPress. This vulnerability affects unknown code of the component Date Countdown Widget. The manipulation of the argument redirectURL leads to cross site scripting.

This vulnerability was named CVE-2024-6346. The attack can be initiated remotely. There is no exploit available.

CVE-2024-6346 | pickplugins Gutenberg Blocks, Page Builder Plugin up to 2.2.85a on WordPress Date Countdown Widget redirectURL cross site scripting

Related Posts

CVE-2024-24725 | Gibbon up to 26.0.00 POST Request import_run.php&type=externalAssessment&step=4 columnOrder deserialization (Exploit 51903 / EDB-51903)

CVE-2024-2682 | Campcodes Online Job Finder System 1.0 controller.php EMPLOYEEID cross site scripting

CVE-2024-4334 | Supreme Modules Lite Plugin up to 2.5.3 on WordPress cross site scripting

CVE-2024-8380 | SourceCodester Contact Manager with Export to VCF 1.0 Delete Contact delete-account.php contact sql injection