6 matches found
CVE-2024-37537
creationtimestamp| type| source ---|---|--- 2024-07-21 10:01:48+00:00| seen| https://t.me/cvedetector/1314...
CVE-2024-37537
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...
CVE-2024-37537
CVE-2024-37537 is a Stored XSS vulnerability in the WordPress plugin WS Contact Form (WordPress plugin: WS Contact Form). Affected versions are 1.3.7 and earlier; root cause is improper input neutralization during web page generation, enabling stored cross-site scripting. Public references confir...
CVE-2024-37537 WordPress WS Contact Form plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...
CVE-2024-37537 WordPress WS Contact Form plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...
WordPress WS Contact Form Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)
Software WS Contact Form Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37537 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9166c1a50a0c Credits younsoung kim, SeoHyeon Lee, MyungJu...