Product:

Magic_post_thumbnail

(Magic\-Post\-Thumbnail)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 3
Date Id Summary Products Score Patch Annotated
2024-08-13 CVE-2024-6724 The Generate Images WordPress plugin before 5.2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup) Magic_post_thumbnail N/A
2023-04-07 CVE-2023-29171 Unauth. Reflected Cross-site Scripting (XSS) vulnerability in Magic Post Thumbnail plugin <= 4.1.10 versions. Magic_post_thumbnail 6.1
2024-08-29 CVE-2024-43921 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Magic Post Thumbnail allows Reflected XSS.This issue affects Magic Post Thumbnail: from n/a through 5.2.9. Magic_post_thumbnail 6.1