CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-4857

The FS Product Inquiry WordPress plugin through 1.1.1 does not sanitise and escape some form submissions, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.4%

CVSS Severity

CVSS v3 Score 6.1

References

https://wpscan.com/vulnerability/bf1b8434-b361-4666-9058-d9f08c09d083/
https://wpscan.com/vulnerability/bf1b8434-b361-4666-9058-d9f08c09d083/

Products affected by CVE-2024-4857

Fudugo » Fs Product Inquiry » Version: 1.0.0

cpe:2.3:a:fudugo:fs_product_inquiry:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4857

Products

Pricing

Contact Us