Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Delower WP To Do allows Stored XSS.This issue affects WP To Do: from n/a through 1.3.0.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/wp-todo/wordpress-wp-to-do-plugin-1-3-0-cross-site-scripting-xss-vulnerability?_s_id=cve | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2024-07-06 13:15
Updated : 2024-07-11 13:10
NVD link : CVE-2024-37539
Mitre link : CVE-2024-37539
CVE.ORG link : CVE-2024-37539
JSON object : View
Products Affected
delower
- wp_to_do
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')