CVE-2024-5627

Published Jul 13, 2024

Last updated 4 months ago

Overview

Description: The Tournamatch WordPress plugin before 4.6.1 does not sanitise and escape some parameters, which could allow users with a role as low as subscriber to perform Cross-Site Scripting attacks.
Source: contact@wpscan.com
NVD status: Awaiting Analysis

Hype score: Not currently trending

References