cve/CVE-2024-3236.md at c052d0d6949679697108fa931a00cd4220694869

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 10:40:54 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

Description

The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks.

POC

Reference

https://wpscan.com/vulnerability/a6c2da28-dc03-4bcc-a6c3-ee55a73861db/

Github

No PoCs found on GitHub currently.

764 B Raw Blame History

CVE-2024-3236

Description

POC

Reference

Github

764 B

Raw Blame History