CVE-2024-9023 | WP-WebAuthn Plugin up to 1.3.1 on WordPress Shortcode wwa_login_form cross site scripting

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability was found in WP-WebAuthn Plugin up to 1.3.1 on WordPress. It has been classified as problematic. This affects the function wwa_login_form of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-9023. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-9023 | WP-WebAuthn Plugin up to 1.3.1 on WordPress Shortcode wwa_login_form cross site scripting

Related Posts

CVE-2024-6373 | itsourcecode Online Food Ordering System up to 1.0 /addproduct.php photo unrestricted upload

CVE-2023-50424 | SAP cloud-security-client-go up to 0.16.x authorization

CVE-2024-48777 | LEDVANCE com.ledvance.smartplus.eu 2.1.10 Firmware Update information disclosure

CVE-2022-34270 | RWS WorldServer up to 11.7.2 UserWSUserManager access control