CVE-2024-4895|The wpDataTables – WordPress Data... - VULHUB开源网络安全威胁库

The wpDataTables – WordPress Data... CVE-2024-4895

- AV AC AU C I A

发布： 2024-10-05

修订： 2024-10-05

The wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the CSV import functionality in all versions up to, and including, 3.4.2.12 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

The wpDataTables – WordPress Data... CVE-2024-4895

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单