CVE-2024-9376 | Kata Plus Plugin up to 1.4.7 on WordPress SVG File Upload cross site scripting

Posted by Angelo Barbosa | Oct 29, 2024 | CVE

A vulnerability classified as problematic was found in Kata Plus Plugin up to 1.4.7 on WordPress. This vulnerability affects unknown code of the component SVG File Upload Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-9376. The attack can be initiated remotely. There is no exploit available.

CVE-2024-9376 | Kata Plus Plugin up to 1.4.7 on WordPress SVG File Upload cross site scripting

Related Posts

CVE-2024-28061 | Apiris Kafeo 6.4.4 Embedded Database File Privilege Escalation

CVE-2024-24821 | Composer InstalledVersions.php Local Privilege Escalation

CVE-2024-8370 | Grocy up to 4.2.0 SVG File Upload recipepictures force_serve_as cross site scripting

CVE-2023-52192 | Keap Official Opt-in Forms Plugin up to 1.0.11 on WordPress cross site scripting