| CVE编号 | CVE-2024-13862 |
|---|---|
| 发布日期 | 2025-03-11T06:00:11.819Z |
| 更新日期 | 2025-03-11T14:32:16.696Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | Unknown |
| 受影响的产品 | S3Bubble Media Streaming (AWS|Elementor|YouTube|Vimeo Functionality) |
| 描述 | The S3Bubble Media Streaming (AWS|Elementor|YouTube|Vimeo Functionality) WordPress plugin through 8.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin |
参考链接:
