cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-9886,https://securityvulnerability.io/vulnerability/CVE-2024-9886,Stored XSS Vulnerability in WP Baidu Map Plugin,"The WP Baidu Map plugin for WordPress exhibits a vulnerability that allows for Stored Cross-Site Scripting (XSS) due to inadequate input validation and output escaping of user-supplied attributes through the 'baidu_map' shortcode. This security flaw permits authenticated attackers with at least contributor-level access to infuse arbitrary web scripts into web pages. When users access these compromised pages, the injected scripts execute, posing significant risks to site integrity and user data. It is crucial for WordPress administrators and site owners to ensure their plugins are up-to-date and follow security best practices to mitigate such vulnerabilities.",Wordpress,WP Baidu Map,6.4,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-10-30T02:04:37.585Z,0