CVE-2026-24601 in Penci Pay Writer Plugininformación

Resumen

por MITRE • 2026-01-23

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Penci Pay Writer penci-pay-writer allows Stored XSS.This issue affects Penci Pay Writer: from n/a through <= 1.5.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Patchstack

Reservar

2026-01-23

Divulgación

2026-01-23

Moderación

aceptado

Artículo

VDB-342686

CPE

listo

CWE

CWE-79 (confirmado)

CVSS

3.5 (VulDB)

EPSS

0.00019

KEV

Actividades

muy bajo

Sector

Hostingprovider

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-24601
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-24601
CVE Details	https://www.cvedetails.com/cve/CVE-2026-24601/

◂ Anterior Visión De Conjunto Próximo ▸

Do you need the next level of professionalism?

Upgrade your account now!