CVE-2024-0233
EventON (Free < 2.2.8, Premium < 4.5.5) - Reflected XSSThe EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 do not properly sanitise and escape a parameter before outputting it back in pages, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
We have discovered 13,983 live websites that are affected by CVE-2024-0233.
Contact us to get more info
Common Weakness Enumeration
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2024-0233 and the relative popularity of websites