cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-9896,https://securityvulnerability.io/vulnerability/CVE-2024-9896,bbPress Core Vulnerable to Reflected Cross-Site Scripting,"The BBP Core plugin for WordPress is susceptible to a Reflected Cross-Site Scripting vulnerability. This issue arises due to the use of the add_query_arg function without proper escaping on the URL across all versions through 1.2.5. As a result, unauthenticated attackers could exploit this vulnerability by crafting malicious links that, when clicked by users, execute arbitrary web scripts. Such exploitation poses significant security risks, making it imperative for users and administrators to ensure that they are using the latest, patched version of the plugin.",Wordpress,Bbp Core – Expand Bbpress Powered Forums With Useful Features,6.1,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,2024-11-02T07:34:03.396Z,0