Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice allows Stored XSS.This issue affects PeproDev Ultimate Invoice: from n/a through 2.0.6.
Metrics
Affected Vendors & Products
References
History
Thu, 17 Oct 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 17 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice allows Stored XSS.This issue affects PeproDev Ultimate Invoice: from n/a through 2.0.6. | |
Title | WordPress PeproDev Ultimate Invoice plugin <= 2.0.6 - Cross Site Scripting (XSS) vulnerability | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published: 2024-10-17T19:02:18.479Z
Updated: 2024-10-17T19:16:25.163Z
Reserved: 2024-10-14T10:40:08.751Z
Link: CVE-2024-49298

Updated: 2024-10-17T19:16:19.524Z

Status : Awaiting Analysis
Published: 2024-10-17T19:15:23.400
Modified: 2024-10-18T12:52:33.507
Link: CVE-2024-49298

No data.