cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-9615,https://securityvulnerability.io/vulnerability/CVE-2024-9615,BulkPress Plugin Vulnerable to Reflected Cross-Site Scripting,"The BulkPress plugin for WordPress presents a vulnerability that can be exploited via reflected cross-site scripting due to improper handling of URL parameters. The use of the 'add_query_arg' function without adequate escaping allows unauthenticated attackers to inject arbitrary scripts into web pages. This injection occurs when victims are deceived into clicking on malicious links, leading to the execution of unwanted scripts within their browsers. Users and administrators of the BulkPress plugin should take immediate measures to patch their installations to mitigate the potential risk.",Wordpress,Bulkpress,6.1,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-16T03:20:49.607Z,0