CVE-2024-10104

Jobs for WordPress < 2.7.8 - Contributor+ Stored XSS

CVSS 5.9 MEDIUMEPSS 0.3%

The Jobs for WordPress plugin before 2.7.8 does not sanitise and escape some of its Job settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L

Productos afectados

Unknown · Jobs for WordPress

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wpscan.com/vulnerability/f0a9c8ae-f2cf-4322-8216-4778b0e37a48/