Vulnerabilities > Benhuson > Page Parts

DATE CVE VULNERABILITY TITLE RISK
2024-11-21 CVE-2024-11360 Cross-site Scripting vulnerability in Benhuson Page Parts
The Page Parts plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.4.3.
network
low complexity
benhuson CWE-79
6.1