Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-25	CVE-2024-8919	Cross-site Scripting vulnerability in Wpdeveloperr Confetti Fall Animation The Confetti Fall Animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'confetti-fall-animation' shortcode in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity wpdeveloperr CWE-79	5.4