cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forjavascript-logic javascript-logic

Direction: ascending
May 19, 2025

JavaScript Logic # CVE-2024-8090

CVE, Research URL

CVE-2024-8090

Home page URL

Security reports for JavaScript Logic

Application

JavaScript Logic

Date
May 16, 2025
Research Description
The JavaScript Logic WordPress plugin through 0.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.
Affected versions
Min -, max -.
Status
vulnerable