CVE-2024-32690 in RSS Feed Widget Pluginالمعلومات

الملخص

بحسب MITRE • 22/04/2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fahad Mahmood RSS Feed Widget allows Stored XSS.This issue affects RSS Feed Widget: from n/a through 2.9.7.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

مسؤول

Patchstack

حجز

17/04/2024

إفشاء

22/04/2024

الاعتدال

تمت الموافقة

إدخال

VDB-261683

EPSS

0.00338

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Interested in the pricing of exploits?

See the underground prices here!