Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mircea N. NMR Strava activities allows DOM-Based XSS.This issue affects NMR Strava activities: from n/a through 1.0.6.
Metrics
Affected Vendors & Products
References
History
Fri, 15 Nov 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Mirceatm
Mirceatm nmr Strava Activities |
|
CPEs | cpe:2.3:a:mirceatm:nmr_strava_activities:*:*:*:*:*:wordpress:*:* | |
Vendors & Products |
Mirceatm
Mirceatm nmr Strava Activities |
Sat, 09 Nov 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sat, 09 Nov 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mircea N. NMR Strava activities allows DOM-Based XSS.This issue affects NMR Strava activities: from n/a through 1.0.6. | |
Title | WordPress NMR Strava activities plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: Patchstack
Published: 2024-11-09T14:30:30.047Z
Updated: 2024-11-09T15:12:21.649Z
Reserved: 2024-10-30T15:04:29.962Z
Link: CVE-2024-51603

Updated: 2024-11-09T15:12:07.457Z

Status : Analyzed
Published: 2024-11-09T15:15:07.710
Modified: 2024-11-15T16:24:18.843
Link: CVE-2024-51603

No data.