CVE-2024-3941
Published May 14, 2024
Last updated 6 months ago
Overview
- Description
- The reCAPTCHA Jetpack WordPress plugin through 0.2.2 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged-in admin add Stored XSS payloads via a CSRF attack.
- Source
- contact@wpscan.com
- NVD status
- Awaiting Analysis
Social media
- Hype score
- Not currently trending