CVE Published: 15/11/2024 |
CVE Updated: 15/11/2024 |
CVE Year: 2024 Source: WPScan |
Vendor: Unknown |
Product: Jobs for WordPress Status : PUBLISHED
CVE-2024-10104 Description
The Jobs for WordPress plugin before 2.7.8 does not sanitise and escape some of its Job settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks