Security Advisory

CVE-2024-5079

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-13 06:00:09

Last updated 2024-08-01 21:03:10

Assigner WPScan

State PUBLISHED

Description

The wp-eMember WordPress plugin before 10.6.7 does not sanitise and escape some of the fields when members register, which allows unauthenticated users to perform Stored Cross-Site Scripting attacks

← Browse all CVEs View on cve.org ↗