CVE-2024-43353Cross-site Scripting in Iqbal Mycred

CWE-79Cross-site Scripting3 documents3 sources
Severity
N/A
No vector
EPSS
0.2%
top 54.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Saad Iqbal Mycred
Timeline
PublishedAug 18

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through <= 2.7.2.

Affected Packages1 packages

CVEListV5saad_iqbal/mycred2.7.2

🔴Vulnerability Details

2
CVEList
WordPress myCred plugin <= 2.7.2 - Cross Site Scripting (XSS) vulnerability2024-08-18
GHSA
GHSA-jfvh-g5v5-5p7c: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in myCred allows Stored XSS2024-08-18
CVE-2024-43353 — Cross-site Scripting in Iqbal Mycred | cvebase