CVE-2024-56037
CVE-2024-56037 is a published WordPress plugin vulnerability: a Reflected Cross-Site Scripting (XSS) in the “User Referral” plugin. The issue is caused by improper neutralization of input during web page generation, allowing injected scripts to execute in victims’ browsers when they load a crafte...