CVE-2024-29767

Name of the Vulnerable Software and Affected Versions Doneren met Mollie versions 2.10.2 and earlier

Description The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Reflected XSS. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For Doneren met Mollie versions 2.10.2 and earlier, update the plugin to a version later than 2.10.2 as soon as possible. If the update is not available, avoid using the plugin until it is fixed. As a temporary workaround, consider restricting access to the plugin to minimize the risk of exploitation.