CVE-2024-5901

SiteOrigin Widgets Bundle Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting in Image Grid Widget – CVE-2024-5901 | WordPress Plugin Vulnerability Report

By Your WP Guy / Jul 30, 2024

Plugin Name: SiteOrigin Widgets Bundle Key Information: Software Type: Plugin Software Slug: so-widgets-bundle Software Status: Active Software Author: gpriday Software Downloads: 40,680,217 Active Installs: 600,000 Last Updated: August 12, 2024 Patched Versions: 1.62.3 Affected Versions: <= 1.62.2 Vulnerability Details: Name: SiteOrigin Widgets Bundle <= 1.62.2 Title: Authenticated (Contributor+) Stored Cross-Site Scripting in Image Grid Widget…

Read More