Vulnerabilities > Marvinlabs > WP Customer Area > 8.1.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-24 | CVE-2024-0665 | Cross-site Scripting vulnerability in Marvinlabs WP Customer Area The WP Customer Area plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 8.2.1 due to insufficient input sanitization and output escaping. | 6.1 |