Security Advisory

CVE-2024-55864

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-17 04:43:53
Last updated 2024-12-17 14:43:59
Assigner jpcert
State PUBLISHED

Description

Cross-site scripting vulnerability exists in My WP Customize Admin/Frontend versions prior to ver 1.24.1. If a malicious administrative user customizes the administrative page with some malicious contents, an arbitrary script may be executed on the web browser of the other users who are accessing the page.