CVE-2024-6927

NVD Published Date: August 29, 2024 at 11:15 AM
NVD Last Modified: August 29, 2024 at 08:37 PM
Download Patch
Vulnerability ID
CVE-2024-6927
Severity
None
Severity Score
None
Summary
The Viral Signup WordPress plugin through 2.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
None
CWE ID
None

Recent Publish

CVE-2022-2440

CVE-2021-4442

CVE-2024-8295

CVE-2024-1384

CVE-2024-3679

CVE-2024-8301

See SecOps Solution
in action

Schedule Demo