VYPR
← All advisories
Medium severity6.5NVD Advisory· Published Mar 27, 2024· Updated Apr 28, 2026

CVE-2024-29803

CVE-2024-29803

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mehanoid.Pro FlatPM allows Stored XSS.This issue affects FlatPM: from n/a before 3.1.05.

Affected products

1
  • Mehanoid/Flatpm
    cpe:2.3:a:mehanoid:flatpm:*:*:*:*:*:wordpress:*:*
    Range: <3.1.05

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.