Lucene search
PatchstackCVE-2024-1434HistoryFeb 29, 2024 - 6:15 a.m.
CVE-2024-1434
2024-02-2906:15:46
CWE-79
Patchstack
web.nvd.nist.gov
61
cve
2024
1434
cross-site scripting
xss
web security
vulnerability
jordy meow media alt renamer
nvd
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Jordy Meow Media Alt Renamer allows Stored XSS.This issue affects Media Alt Renamer: from n/a through 0.0.1.
Affected configurations
Node
jordy_meowmedia_file_renamerRange≤0.0.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jordy_meow | media_file_renamer | * | cpe:2.3:a:jordy_meow:media_file_renamer:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "media-alt-renamer",
"product": "Media Alt Renamer",
"vendor": "Jordy Meow",
"versions": [
{
"lessThanOrEqual": "0.0.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2024-1434
2024-02-29 06:15:46
wpvulndb
wpvulndb
prion
prion
Cross site scripting
2024-02-29 06:15:00
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-1434