Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8
CVE-2024-3977
- EPSS 0.14%
- Published 14.06.2024 06:15:12
- Last modified 21.11.2024 09:30:48
The WordPress Jitsi Shortcode WordPress plugin through 0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability...
5.4
CVE-2024-3978
- EPSS 0.35%
- Published 14.06.2024 06:15:12
- Last modified 21.11.2024 09:30:48
The WordPress Jitsi Shortcode WordPress plugin through 0.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and ab...
1