Vulnerability Details CVE-2024-32147
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Form Plugin Team - GhozyLab Easy Contact Form Lite allows Stored XSS.This issue affects Easy Contact Form Lite : from n/a through 1.1.23.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.8%
CVSS Severity
CVSS v3 Score 6.5
References
- https://patchstack.com/database/vulnerability/contact-form-lite/wordpress-contact-form-plugin-plugin-1-1-23-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/contact-form-lite/wordpress-contact-form-plugin-plugin-1-1-23-cross-site-scripting-xss-vulnerability?_s_id=cve
Products affected by CVE-2024-32147
-
cpe:2.3:a:ghozylab:contact_form:1.0.0
-
cpe:2.3:a:ghozylab:contact_form:1.0.1
-
cpe:2.3:a:ghozylab:contact_form:1.0.10
-
cpe:2.3:a:ghozylab:contact_form:1.0.11
-
cpe:2.3:a:ghozylab:contact_form:1.0.13
-
cpe:2.3:a:ghozylab:contact_form:1.0.15
-
cpe:2.3:a:ghozylab:contact_form:1.0.17
-
cpe:2.3:a:ghozylab:contact_form:1.0.19
-
cpe:2.3:a:ghozylab:contact_form:1.0.21
-
cpe:2.3:a:ghozylab:contact_form:1.0.23
-
cpe:2.3:a:ghozylab:contact_form:1.0.25
-
cpe:2.3:a:ghozylab:contact_form:1.0.27
-
cpe:2.3:a:ghozylab:contact_form:1.0.29
-
cpe:2.3:a:ghozylab:contact_form:1.0.3
-
cpe:2.3:a:ghozylab:contact_form:1.0.30
-
cpe:2.3:a:ghozylab:contact_form:1.0.31
-
cpe:2.3:a:ghozylab:contact_form:1.0.33
-
cpe:2.3:a:ghozylab:contact_form:1.0.35
-
cpe:2.3:a:ghozylab:contact_form:1.0.37
-
cpe:2.3:a:ghozylab:contact_form:1.0.39
-
cpe:2.3:a:ghozylab:contact_form:1.0.41
-
cpe:2.3:a:ghozylab:contact_form:1.0.43
-
cpe:2.3:a:ghozylab:contact_form:1.0.45
-
cpe:2.3:a:ghozylab:contact_form:1.0.47
-
cpe:2.3:a:ghozylab:contact_form:1.0.49
-
cpe:2.3:a:ghozylab:contact_form:1.0.5
-
cpe:2.3:a:ghozylab:contact_form:1.0.51
-
cpe:2.3:a:ghozylab:contact_form:1.0.53
-
cpe:2.3:a:ghozylab:contact_form:1.0.55
-
cpe:2.3:a:ghozylab:contact_form:1.0.57
-
cpe:2.3:a:ghozylab:contact_form:1.0.59
-
cpe:2.3:a:ghozylab:contact_form:1.0.61
-
cpe:2.3:a:ghozylab:contact_form:1.0.63
-
cpe:2.3:a:ghozylab:contact_form:1.0.65
-
cpe:2.3:a:ghozylab:contact_form:1.0.67
-
cpe:2.3:a:ghozylab:contact_form:1.0.69
-
cpe:2.3:a:ghozylab:contact_form:1.0.7
-
cpe:2.3:a:ghozylab:contact_form:1.0.70
-
cpe:2.3:a:ghozylab:contact_form:1.0.71
-
cpe:2.3:a:ghozylab:contact_form:1.0.73
-
cpe:2.3:a:ghozylab:contact_form:1.0.75
-
cpe:2.3:a:ghozylab:contact_form:1.0.77
-
cpe:2.3:a:ghozylab:contact_form:1.0.79
-
cpe:2.3:a:ghozylab:contact_form:1.0.81
-
cpe:2.3:a:ghozylab:contact_form:1.0.83
-
cpe:2.3:a:ghozylab:contact_form:1.0.85
-
cpe:2.3:a:ghozylab:contact_form:1.0.87
-
cpe:2.3:a:ghozylab:contact_form:1.0.89
-
cpe:2.3:a:ghozylab:contact_form:1.0.9
-
cpe:2.3:a:ghozylab:contact_form:1.0.90
-
cpe:2.3:a:ghozylab:contact_form:1.0.91
-
cpe:2.3:a:ghozylab:contact_form:1.0.93
-
cpe:2.3:a:ghozylab:contact_form:1.0.95
-
cpe:2.3:a:ghozylab:contact_form:1.0.97
-
cpe:2.3:a:ghozylab:contact_form:1.0.99
-
cpe:2.3:a:ghozylab:contact_form:1.1.0
-
cpe:2.3:a:ghozylab:contact_form:1.1.1
-
cpe:2.3:a:ghozylab:contact_form:1.1.10
-
cpe:2.3:a:ghozylab:contact_form:1.1.11
-
cpe:2.3:a:ghozylab:contact_form:1.1.13
-
cpe:2.3:a:ghozylab:contact_form:1.1.15
-
cpe:2.3:a:ghozylab:contact_form:1.1.17
-
cpe:2.3:a:ghozylab:contact_form:1.1.19
-
cpe:2.3:a:ghozylab:contact_form:1.1.21
-
cpe:2.3:a:ghozylab:contact_form:1.1.23
-
cpe:2.3:a:ghozylab:contact_form:1.1.3
-
cpe:2.3:a:ghozylab:contact_form:1.1.5