CVE-2024-4365 - How a WordPress Plugin Opened Doors with a Stored XSS Vulnerability
The Advanced iFrame plugin is a popular tool for WordPress sites. It lets site owners embed content from other pages in an easy, customizable iFrame.
CVE-2024-2301 - How HP LaserJet Pro Printers Are Vulnerable to XSS Attacks
CVE-2024-2301 is a recent vulnerability affecting certain HP LaserJet Pro printers. If you’re an IT admin, own a small office, or just care about
CVE-2024-35224 - Stored XSS (Cross-Site Scripting) in OpenProject’s Cost Report via tablesorter `{icon}` Substitution
OpenProject is a widely-used open source project management software popular in enterprises and organizations to collaborate, manage tasks, track project status, and much more. In
CVE-2024-4575 - How a Simple LayerSlider Shortcode Bug Exposed WordPress Sites to Stored XSS (With PoC)
The LayerSlider plugin is one of the most popular tools for building fancy sliders on WordPress sites. But in version 7.11., a serious security
CVE-2024-3997 - Stored XSS in Prime Slider – Addons For Elementor (Pagepiling Widget) – Exploit Analysis
A critical Stored Cross-Site Scripting (XSS) vulnerability has been discovered in the popular WordPress plugin Prime Slider – Addons For Elementor. Registered under CVE-2024-3997, this flaw
Episode
00:00:00
00:00:00