CVE

CVE-2024-3918

Severity:

Pending analysis

Type:

Unavailable / Other

Publication date:

23/05/2024

Last modified:

24/05/2024

Description

The Pet Manager WordPress plugin through 1.4 does not sanitise and escape some of its Pet settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks.

References to Advisories, Solutions, and Tools

https://wpscan.com/vulnerability/2074d0f5-4165-4130-9391-37cb21e8aa1b/