Lucene search
K

6 matches found

Circl
Circl
added 2024/07/21 10:1 a.m.4 views

CVE-2024-37537

creationtimestamp| type| source ---|---|--- 2024-07-21 10:01:48+00:00| seen| https://t.me/cvedetector/1314...

5.9CVSS4.8AI score0.00274EPSS
Exploits0References1
OSV
OSV
added 2024/07/21 7:15 a.m.2 views

CVE-2024-37537

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...

5.4CVSS5.8AI score0.00274EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 7:4 a.m.51 views

CVE-2024-37537

CVE-2024-37537 is a Stored XSS vulnerability in the WordPress plugin WS Contact Form (WordPress plugin: WS Contact Form). Affected versions are 1.3.7 and earlier; root cause is improper input neutralization during web page generation, enabling stored cross-site scripting. Public references confir...

5.9CVSS5.8AI score0.00274EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/21 7:4 a.m.30 views

CVE-2024-37537 WordPress WS Contact Form plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...

5.9CVSS0.00274EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/21 7:4 a.m.10 views

CVE-2024-37537 WordPress WS Contact Form plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7...

5.9CVSS5.8AI score0.00274EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/05 12:0 a.m.12 views

WordPress WS Contact Form Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS)

Software WS Contact Form Type Plugin Vulnerable versions = 1.3.7 Fixed in 1.3.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-37537 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 9166c1a50a0c Credits younsoung kim, SeoHyeon Lee, MyungJu...

5.9CVSS6.9AI score0.00274EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder