CVE-2024-13926

High CVSS: 7.5

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastrophic backtracking issue in the regular expression processing to cause a DoS.

Vendor

Connections-pro

Product

Wp-syntax

CWE

CWE-1333

Yayın Tarihi

2025-04-19 06:15:18

Güncelleme

2025-05-28 15:50:23

Source Identifier

contact@wpscan.com

KEV Date Added

Kategoriler

CWE-1333 Wp-syntax HIGH Connections-pro 2025

Referanslar

https://wpscan.com/vulnerability/b5f0092e-7cd5-412f-a8ea-7bd4a8bf86d2/