Medium severity4.8NVD Advisory· Published Nov 5, 2024· Updated Jun 17, 2026
CVE-2024-9883
CVE-2024-9883
Description
The Pods WordPress plugin before 3.2.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Pods plugindescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/ea4b277e-ef47-4e38-bd82-c5a54a95372f/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.