CVE-2024-10103 – “MailPoet Stored Cross-Site Scripting (XSS) Vulnerability”

11月 19, 2024
7:17 am

CVE ID : CVE-2024-10103

Published : Nov. 19, 2024, 6:15 a.m. | 1 hour, 1 minute ago

Description : In the process of testing the MailPoet WordPress plugin before 5.3.2, a vulnerability was found that allows you to implement Stored XSS on behalf of the editor by embedding malicious script, which entails account takeover backdoor

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-10103 – “MailPoet Stored Cross-Site Scripting (XSS) Vulnerability”

Elvescore.io

Recent Posts

CVE-2024-12967 – Code-Projects Job Recruitment SQL Injectionazard

CVE-2024-12968 – Code-projects Job Recruitment SQL Injection Vulnerability

CVE-2024-45600 – GLPI Fields SQL Injection Vulnerability

CVE-2024-45805 – Apache OpenCTI Unauthenticated Access to Restricted Support Information

CVE-2024-53850 – GLPI Addressing Plugin Information Disclosure Vulnerability

CVE-2024-55950 – Tabby Terminal Entitlements Elevated Privileges Vulnerability

CVE-2024-10103 – “MailPoet Stored Cross-Site Scripting (XSS) Vulnerability”

CVE-2024-10103 – “MailPoet Stored Cross-Site Scripting (XSS) Vulnerability”