Unrated severityNVD Advisory· Published Jan 2, 2025· Updated Jan 6, 2025
Goodlayers Core < 2.0.10 - Contributor+ Stored XSS
CVE-2024-11357
Description
The goodlayers-core WordPress plugin before 2.0.10 does not sanitise and escape some of its settings, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <2.0.10
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/7e8c6816-9b7a-43e8-9508-789c8051dd9b/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.