Security Advisory

CVE-2024-10103

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-19 06:00:02

Last updated 2024-11-19 14:19:15

Assigner WPScan

State PUBLISHED

Description

In the process of testing the MailPoet WordPress plugin before 5.3.2, a vulnerability was found that allows you to implement Stored XSS on behalf of the editor by embedding malicious script, which entails account takeover backdoor

← Browse all CVEs View on cve.org ↗