CVE-2024-47306Cross-site Scripting in PRO Secure Copy Content Protection AND Content Locking

CWE-79Cross-site Scripting3 documents3 sources
Severity
N/A
No vector
EPSS
0.3%
top 49.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
AYS PRO Secure Copy Content Protection AND Content Locking
Timeline
PublishedOct 6

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro Secure Copy Content Protection and Content Locking secure-copy-content-protection-subscribe-to-view allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking: from n/a through <= 4.2.3.

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
WordPress Secure Copy Content Protection and Content Locking plugin <= 4.2.3 - Cross Site Scripting (XSS) vulnerability2024-10-06
GHSA
GHSA-vvc7-f22g-qprw: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Copy Content Protection Team Secure Copy2024-10-06
CVE-2024-47306 — Cross-site Scripting | cvebase