CVE-2024-7560 | News Flash Plugin up to 1.1.0 on WordPress code injection

Posted by Angelo Barbosa | Aug 7, 2024 | CVE

A vulnerability classified as critical was found in News Flash Plugin up to 1.1.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to code injection.

This vulnerability was named CVE-2024-7560. The attack can be initiated remotely. There is no exploit available.

CVE-2024-7560 | News Flash Plugin up to 1.1.0 on WordPress code injection

Related Posts

CVE-2024-1719 | scottpaterson Easy PayPal & Stripe Buy Now Button Plugin up to 2.1 on WordPress Setting wpecpp_stripe_connect_completion cross-site request forgery

CVE-2024-1251 | Tongda OA 2017 up to 11.10 delete.php DELETE_STR sql injection

CVE-2024-26467 | railroad-diagrams URL generator.html cross site scripting

CVE-2023-47247 | SysAid On-Premise up to 23.3.33 Knowledge Base Article denial of service