Reflected XSS Vulnerability in Mang Board WP by Hometory
CVE-2024-56296
7.1HIGH
What is CVE-2024-56296?
A Cross-site Scripting (XSS) vulnerability exists in the Mang Board WP plugin by Hometory, affecting versions from n/a up to 1.8.4. This issue allows attackers to inject malicious scripts into web pages viewed by users, potentially compromising sensitive user data and session information. The vulnerability occurs due to improper neutralization of user input during web page generation, leading to reflected XSS exploitation. Website administrators are strongly advised to update to the latest version to mitigate the risk of this vulnerability.
Affected Version(s)
Mang Board WP <= 1.8.4