CVE-2024-8734 | lucasstad Lucas String Replace Plugin up to 2.0.5 on WordPress add_query_arg cross site scripting

Posted by Angelo Barbosa | Sep 13, 2024 | CVE

A vulnerability was found in lucasstad Lucas String Replace Plugin up to 2.0.5 on WordPress. It has been classified as problematic. This affects the function add_query_arg. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-8734. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-8734 | lucasstad Lucas String Replace Plugin up to 2.0.5 on WordPress add_query_arg cross site scripting

Related Posts

CVE-2023-52456 | Linux Kernel up to 5.10.208/5.15.147/6.1.74/6.6.13/6.7.1 imx deadlock

CVE-2024-21782 | F5 BIG-IP/BIG-IQ up to 15.1.8/16.1.3/17.1.0 scp os command injection (K98606833)

CVE-2024-8338 | HFO4 shudong-share 2.4.7 File Extension fileReceive.php file unrestricted upload

CVE-2024-20042 | MediaTek MT8798 Da out-of-bounds write (ALPS08541780)