Lucene search
HistoryJun 08, 2024 - 1:15 p.m.
CVE-2024-35734
cve-2024-35734
web page generation
xss
codepeople wp time slots booking form
stored xss
vulnerability
security
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in CodePeople WP Time Slots Booking Form allows Stored XSS.This issue affects WP Time Slots Booking Form: from n/a through 1.2.10.
Related
wpvulndb
wpvulndb
cvelist
cvelist
vulnrichment
vulnrichment
cve
cve
CVE-2024-35734
2024-06-08 13:15:55
wordfence
wordfence
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2024-35734