CVE-2024-32674

May 8, 2024, 1:15 p.m.

Tags

vultures@jpcert.or.jp
2024-05-08
CVE-2024-32674

Product(s) Impacted

Heateor Social Login WordPress

  • up to 1.1.32

Heateor Social Login WordPress

  • prior to 1.1.32

Description

Heateor Social Login WordPress prior to 1.1.32 contains a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the website using the product.

Weaknesses

Date

Published: May 8, 2024, 4:15 a.m.

Last Modified: May 8, 2024, 1:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/en/jp/JVN87694318/
vultures@jpcert.or.jp
https://wordpress.org/plugins/heateor-social-login/
vultures@jpcert.or.jp