CVE-2024-32711Cross-site Scripting in Iqbal Mycred

CWE-79Cross-site Scripting4 documents4 sources
Severity
N/A
No vector
EPSS
0.2%
top 63.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Saad Iqbal Mycred
Timeline
PublishedApr 24

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through <= 2.6.3.

Affected Packages1 packages

CVEListV5saad_iqbal/mycred2.6.3

🔴Vulnerability Details

3
GHSA
GHSA-8hv5-c5c3-jqvg: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in myCred allows Stored XSS2024-04-24
CVEList
WordPress myCred plugin <= 2.6.3 - Cross Site Scripting (XSS) vulnerability2024-04-24
VulnCheck
myCred Plugin Cross Site Scripting (XSS)2024
CVE-2024-32711 — Cross-site Scripting in Iqbal Mycred | cvebase