CVE-2024-33209 Information

Description

FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the \Add New Entry\ section which allows them to execute arbitrary code in the context of a victim’s web browser.

Reference

https://github.com/paragbagul111/CVE-2024-33209