Lucene search
WpvulndbWPVDB-ID:69853CEF-A8D7-4CE9-AE28-15634378F759HistoryJan 12, 2024 - 12:00 a.m.
Ajax Search Lite < 4.11.5 - Reflected Cross-Site Scripting
2024-01-1200:00:00
wpscan.com
16
ajax search lite
cross-site scripting
input sanitization
output escaping
unauthenticated attackers
web scripts
Description The plugin is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 4.11.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Related
nvd
nvd
CVE-2024-21752
2024-02-29 06:15:47
cve
cve
CVE-2024-21752
2024-02-29 06:15:47
prion
prion
Cross site request forgery (csrf)
2024-02-29 06:15:00
vulnrichment
vulnrichment
cvelist
cvelist
wordfence
wordfence
AI Score
6.1
Confidence
High
EPSS
0
Percentile
9.0%
Related for WPVDB-ID:69853CEF-A8D7-4CE9-AE28-15634378F759