CVE-2024-9851 | feedmymedia LSX Tour Operator Plugin up to 1.4.9 on WordPress SVG File Upload cross site scripting
A vulnerability, which was classified as problematic, was found in feedmymedia LSX Tour Operator Plugin up to 1.4.9 on WordPress. This affects an unknown part of the component SVG File Upload Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-9851. It is possible to initiate the attack remotely. There is no exploit available.