Vulnerabilities > Acekyd

DATE CVE VULNERABILITY TITLE RISK
2024-10-04 CVE-2024-9445 Cross-site Scripting vulnerability in Acekyd Display Medium Posts
The Display Medium Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's display_medium_posts shortcode in all versions up to, and including, 5.0.1 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
acekyd CWE-79
5.4