cve/CVE-2024-7313.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 6a17b5b11e Update CVE sources 2024-08-30 20:52

2024-08-30 20:52:42 +00:00

982 B

Raw Permalink Blame History

CVE-2024-7313

Description

The Shield Security WordPress plugin before 20.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.

POC

Reference

https://wpscan.com/vulnerability/83a1bdc6-098e-43d5-89e5-f4202ecd78a1/

Github

https://github.com/20142995/nuclei-templates
https://github.com/nomi-sec/PoC-in-GitHub

982 B Raw Permalink Blame History

CVE-2024-7313

Description

POC

Reference

Github

982 B

Raw Permalink Blame History