Skip to content

Commit

Permalink
generated content from 2025-01-19
Browse files Browse the repository at this point in the history
  • Loading branch information
gitadvisor committed Jan 19, 2025
1 parent 1b339e3 commit 850d669
Show file tree
Hide file tree
Showing 2 changed files with 23 additions and 0 deletions.
1 change: 1 addition & 0 deletions mapping.csv
Original file line number Diff line number Diff line change
Expand Up @@ -264282,3 +264282,4 @@ vulnerability,CVE-2024-45653,vulnerability--f4fd0d13-e497-434e-bd2b-ce10a862bd57
vulnerability,CVE-2024-45652,vulnerability--94a5fc22-1db9-4846-afb3-ab37b542d40c
vulnerability,CVE-2024-45654,vulnerability--a9611ad8-724f-4a45-946f-448aa69237f6
vulnerability,CVE-2025-0564,vulnerability--808d8963-fb7c-412a-bc71-6201d43e5dd5
vulnerability,CVE-2024-8722,vulnerability--717fa8b1-7709-4177-bf36-c8d91b9382f3
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
{
"type": "bundle",
"id": "bundle--051dc37c-aed1-434d-8d55-19d76b4afc7e",
"objects": [
{
"type": "vulnerability",
"spec_version": "2.1",
"id": "vulnerability--717fa8b1-7709-4177-bf36-c8d91b9382f3",
"created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
"created": "2025-01-19T05:17:40.631107Z",
"modified": "2025-01-19T05:17:40.631107Z",
"name": "CVE-2024-8722",
"description": "The Import any XML or CSV File to WordPress PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 4.9.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file.",
"external_references": [
{
"source_name": "cve",
"external_id": "CVE-2024-8722"
}
]
}
]
}

0 comments on commit 850d669

Please sign in to comment.