Unrated severityNVD Advisory· Published Sep 12, 2024· Updated Sep 12, 2024
MM-Breaking News <= 0.7.9 - Reflected XSS
CVE-2024-8056
Description
The MM-Breaking News WordPress plugin through 0.7.9 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/203b8122-f1e5-4e9e-ba83-f5cd59d8a289/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.