cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-13630,https://securityvulnerability.io/vulnerability/CVE-2024-13630,Reflected Cross-Site Scripting Vulnerability in NewsTicker WordPress Plugin,"The NewsTicker plugin for WordPress, specifically version 1.0 and earlier, is prone to a Reflected Cross-Site Scripting vulnerability. This issue arises due to a failure to properly sanitize and escape a specific parameter before displaying it on the page. As a consequence, malicious actors can exploit this vulnerability to inject harmful scripts, which may target high privilege users, including administrators, potentially leading to unauthorized actions or data exposure.",WordPress,Newsticker,6.1,MEDIUM,0.01,false,,false,false,true,2025-02-26T06:00:09.000Z,true,false,false,,2025-02-26T06:00:09.964Z,0