CVE-2024-13329

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 4, 2025

Summary

CVE-2024-13329 is a vulnerability affecting the Solidres WordPress plugin up to version 0.9.4. This issue allows for Reflected Cross-Site Scripting (XSS) attacks due to insufficient sanitization and escaping of user input before it is displayed on the page. An attacker could exploit this vulnerability by injecting malicious scripts into a web page, potentially gaining access to sensitive information or taking control of high-privilege user accounts, such as admin accounts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2WMUfz
https://www.cve.org/CVERecord?id=CVE-2024-13329
https://nvd.nist.gov/vuln/detail/CVE-2024-13329

Back to Vulnerability Database

CVE-2024-13329

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations