Vulnerabilities > Magenet > Website Article Monetization > 1.0.11

DATE CVE VULNERABILITY TITLE RISK
2024-03-20 CVE-2024-1379 Cross-site Scripting vulnerability in Magenet Website Article Monetization
The Website Article Monetization By MageNet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'abp_auth_key' parameter in all versions up to, and including, 1.0.11 due to insufficient input sanitization and output escaping and a missing authorization check.
network
low complexity
magenet CWE-79
6.1
6.1