CVE-2024-9023 | WP-WebAuthn Plugin up to 1.3.1 on WordPress Shortcode wwa_login_form cross site scripting

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability was found in WP-WebAuthn Plugin up to 1.3.1 on WordPress. It has been classified as problematic. This affects the function wwa_login_form of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-9023. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-9023 | WP-WebAuthn Plugin up to 1.3.1 on WordPress Shortcode wwa_login_form cross site scripting

Related Posts

CVE-2024-9878 | 10Web Photo Gallery Plugin up to 1.8.30 on WordPress cross site scripting

CVE-2024-27950 | sirv Image Optimizer, Resizer and CDN Plugin up to 7.2.0 on WordPress authorization

CVE-2024-5859 | Appointment Booking and Online Scheduling Plugin up to 4.4.2 on WordPress cross site scripting

CVE-2024-5181 | mudler localai up to 2.14.0 Configuration File backend os command injection