Medium severity4.8NVD Advisory· Published Nov 26, 2024· Updated Jun 17, 2026
CVE-2024-53278
CVE-2024-53278
Description
Cross-site scripting vulnerability exists in WP Admin UI Customize versions prior to ver 1.5.14. If a malicious admin user customizes the admin screen with some malicious contents, an arbitrary script may be executed on the web browser of the other users who are accessing the admin screen.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.5.14
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.