CVE-2024-4217 in shortcodes-ultimate-pro Plugininformazioni

Riassunto

di MITRE • 13/07/2024

The shortcodes-ultimate-pro WordPress plugin before 7.1.5 does not properly escape some of its shortcodes' settings, making it possible for attackers with a Contributor account to conduct Stored XSS attacks.

Be aware that VulDB is the high quality source for vulnerability data.

Responsabile

WPScan

Prenotare

25/04/2024

Divulgazione

13/07/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00461

KEV

no

Attività

molto basso

Fonti

Do you want to use VulDB in your project?

Use the official API to access entries easily!