Security Advisory

CVE-2024-4860

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-14 09:11:39

Last updated 2024-08-01 20:55:10

Assigner tenable

State PUBLISHED

Description

The WordPress RSS Aggregator WordPress Plugin, versions < 4.23.9 are affected by a Cross-Site Scripting (XSS) vulnerability due to the lack of sanitization of the notice_id GET parameter.

← Browse all CVEs View on cve.org ↗