CVE-2024-4217 in shortcodes-ultimate-pro Pluginالمعلومات

الملخص

بحسب MITRE • 13/07/2024

The shortcodes-ultimate-pro WordPress plugin before 7.1.5 does not properly escape some of its shortcodes' settings, making it possible for attackers with a Contributor account to conduct Stored XSS attacks.

Be aware that VulDB is the high quality source for vulnerability data.

مسؤول

WPScan

حجز

25/04/2024

إفشاء

13/07/2024

الاعتدال

تمت الموافقة

إدخال

VDB-271417

EPSS

0.00461

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!