Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ilya Chekalskiy Like in Vk.com allows Stored XSS.This issue affects Like in Vk.com: from n/a through 0.5.2.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Wordpress |
|
No data.
No data.
References
History
Sat, 12 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Mon, 16 Dec 2024 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 16 Dec 2024 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ilya Chekalskiy Like in Vk.com allows Stored XSS.This issue affects Like in Vk.com: from n/a through 0.5.2. | |
| Title | WordPress Like in Vk.com plugin <= 0.5.2 - CSRF to Stored Cross-Site Scripting vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2024-12-16T14:13:50.199Z
Updated: 2024-12-16T20:01:51.792Z
Reserved: 2024-12-02T12:06:23.396Z
Link: CVE-2024-54424
Vulnrichment
Updated: 2024-12-16T19:37:47.048Z
NVD
Status : Received
Published: 2024-12-16T15:15:20.697
Modified: 2024-12-16T15:15:20.697
Link: CVE-2024-54424
Redhat
No data.