How severe is CVE-2024-3641?

CVE-2024-3641 has a CVSS v3 score of 6.1 (MEDIUM).

CVE-2024-3641

Name: newsletter_popup
Author: mndpsingh287

6.1MEDIUM

The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some parameters, which could allow unauthenticated visitors to perform Cross-Site Scripting attacks against admins

Опубликовано: 5/16/2024Обновлено: 5/19/2025

Описание

The Newsletter Popup WordPress plugin through 1.2 does not sanitise and escape some parameters, which could allow unauthenticated visitors to perform Cross-Site Scripting attacks against admins

ИИ-АнализНа базе ИИ

Затронутые продукты

mndpsingh287newsletter_popup

Ссылки

https://wpscan.com/vulnerability/f4047f1e-d5ea-425f-8def-76dd5e6a497e/
ExploitThird Party Advisory
https://wpscan.com/vulnerability/f4047f1e-d5ea-425f-8def-76dd5e6a497e/
ExploitThird Party Advisory