Stored XSS Vulnerability in Easy Age Verify
CVE-2024-35757
4.8MEDIUM
Key Information
- Vendor
- 5 Star Plugins
- Status
- Easy Age Verify
- Vendor
- Published:
- 21 June 2024
Summary
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 5 Star Plugins Easy Age Verify allows Stored XSS.This issue affects Easy Age Verify: from n/a through 1.8.2.
Affected Version(s)
Easy Age Verify <= 1.8.2
CVSS V3.1
Score:
4.8
Severity:
MEDIUM
Confidentiality:
LOW
Integrity:
LOW
Availability:
NONE
Attack Complexity:
LOW
Privileges Required:
HIGH
User Interaction:
REQUIRED
Scope:
CHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Huynh Tien Si (Patchstack Alliance)