cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11882,https://securityvulnerability.io/vulnerability/CVE-2024-11882,Stored Cross-Site Scripting Vulnerability in WP Sites Plugin,"The FAQ And Answers plugin for WordPress is susceptible to a Stored Cross-Site Scripting vulnerability due to inadequate input sanitization and output escaping on user-supplied attributes through its 'faq' shortcode. This flaw allows authenticated attackers with contributor-level access or higher to inject arbitrary scripts into the pages, which are executed whenever users view the compromised pages. Proper sanitization and validation measures are critical to prevent malicious exploitation.",Wordpress,Faq And Answers – Create Frequently Asked Questions Area On WP Sites,6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-12-12T05:24:18.791Z,0