Medium severity6.1NVD Advisory· Published Jun 14, 2024· Updated Jun 17, 2026
CVE-2024-3966
CVE-2024-3966
Description
The Pray For Me WordPress plugin through 1.0.4 does not sanitise and escape some parameters, which could unauthenticated visitors to perform Cross-Site Scripting attacks that trigger when an admin visits the Prayer Requests in the WP Admin
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Pray For Medescription
- Range: <=1.0.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/9f0a575f-862d-4f2e-8d25-82c6f58dd11a/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.