Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPMobile.App plugin <= 11.18 versions.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:LAmauri Wpmobile.app
APPAmauri< 11.19
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
XSS
CWE
Related vulnerabilities
CVE-2024-13888HIGH7.2ten sam produkt
The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 11....
CVE-2024-35694HIGH7.1ten sam produkt
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Amauri W...
CVE-2023-28932MEDIUM5.9ten sam produkt
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPMobile.App WPMobile.App — Android and iOS ...
CVE-2023-22702MEDIUM6.5ten sam produkt
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in WPMobile.App WPMobile.App — Android and iOS M...
CVE-2026-22809MEDIUM4.4ten sam vendor
tarteaucitron.js is a compliant and accessible cookie banner. Prior to 1.29.0, a Regular Expression Denial of ...