Products
Otter Blocks WordPress plugin
- before 2.6.6
Source
contact@wpscan.com
Tags
CVE-2024-2729 details
Published : April 18, 2024, 5:15 a.m.
Last Modified : April 18, 2024, 1:04 p.m.
Last Modified : April 18, 2024, 1:04 p.m.
Description
The Otter Blocks WordPress plugin before 2.6.6 does not properly escape its mainHeadings blocks' attribute before appending it to the final rendered block, allowing contributors to conduct Stored XSS attacks.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://wpscan.com/vulnerability/5014f886-020e-49d1-96a5-2159eed8ba14/ | contact@wpscan.com |
This website uses the NVD API, but is not approved or certified by it.