Security Advisory

CVE-2024-3231

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-17 06:00:02

Last updated 2024-11-01 19:39:52

Assigner WPScan

State PUBLISHED

Description

The Popup4Phone WordPress plugin through 1.3.2 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks against admins.

← Browse all CVEs View on cve.org ↗