Severity
High
Analysis Summary
CVE-2024-9951 CVSS:6.1
The WP Photo Album Plus plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wppa-tab' parameter in all versions up to, and including, 8.8.05.003 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
CVE-2024-9347 CVSS:6.1
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wpext-export' parameter in all versions up to, and including, 3.0.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
CVE-2024-49265 CVSS:6.5
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Partnerships at Booking.Com Booking.Com Banner Creator allows Stored XSS.This issue affects Booking.Com Banner Creator: from n/a through 1.4.6.
CVE-2024-49266 CVSS:5.9
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thimo Grauerholz WP-Spreadplugin allows Stored XSS.This issue affects WP-Spreadplugin: from n/a through 4.8.9.
CVE-2024-49268 CVSS:7.1
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in sunburntkamel disconnected allows Reflected XSS.This issue affects disconnected: from n/a through 1.3.0.
CVE-2024-49270 CVSS:6.5
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HashThemes Smart Blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through 2.0.
CVE-2024-49252 CVSS:5.3
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Teplitsa of social technologies Leyka.This issue affects Leyka: from n/a through 3.31.6.
CVE-2024-49245 CVSS:7.5
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ahime Ahime Image Printer.This issue affects Ahime Image Printer: from n/a through 1.0.0.
CVE-2024-49258 CVSS:6.5
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery.This issue affects WordPress Gallery Plugin – Limb Image Gallery: from n/a through 1.5.7.
CVE-2024-49242 CVSS:10
Unrestricted Upload of File with Dangerous Type vulnerability in Shafiq Digital Lottery allows Upload a Web Shell to a Web Server.This issue affects Digital Lottery: from n/a through 3.0.5.
Impact
- Cross-Site Scripting
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-9951
- CVE-2024-9347
- CVE-2024-49265
- CVE-2024-49266
- CVE-2024-49268
- CVE-2024-49270
- CVE-2024-49252
- CVE-2024-49245
- CVE-2024-49258
- CVE-2024-49242
Affected Vendors
Affected Products
- opajaap WP Photo Album Plus - *
- wpextended The Ultimate WordPress Toolkit – WP Extended - *
- Partnerships at Booking.com Booking.com Banner Creator - n/a
- Thimo Grauerholz WP-Spreadplugin - n/a
- sunburntkamel disconnected - n/a
- HashThemes Smart Blocks - n/a
- Teplitsa of social technologies Leyka - n/a
- Ahime Ahime Image Printer - n/a
- Limb WordPress Gallery Plugin – Limb Image Gallery - n/a
- Shafiq Digital Lottery - n/a
Remediation
Upgrade to the latest version of Plugin for WordPress, available from the WordPress Plugin Directory.