Lucene search
HistoryJul 20, 2024 - 9:15 a.m.
CVE-2024-37954
cve-2024-37954
xss
input neutralization
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in marcelotorres Simple Responsive Slider allows Reflected XSS.This issue affects Simple Responsive Slider: from n/a through 0.2.2.5.
Affected configurations
Node
marcelotorressimple_responsive_sliderRange≤0.2.2.5wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| marcelotorres | simple_responsive_slider | * | cpe:2.3:a:marcelotorres:simple_responsive_slider:*:*:*:*:*:wordpress:*:* |
Related
vulnrichment
vulnrichment
cve
cve
CVE-2024-37954
2024-07-20 09:15:08
cvelist
cvelist
wordfence
wordfence
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Related for NVD:CVE-2024-37954