Vulnerabilities > Lucasstad > Lucas String Replace
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-09-13 | CVE-2024-8734 | Cross-site Scripting vulnerability in Lucasstad Lucas String Replace The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.5. | 6.1 |