📦

spidercontacts

Vendor: 10web

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.26% Exploit Prob.
Latest CVE CVE-2024-6272 Jul 31

Security Vulnerability Index

Page 1 / 1
6.1 CVSS
CVE-2024-6272

The SpiderContacts WordPress plugin through 1.1.7 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

EPSS: 0.26%