Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Ninjaforms |
|
No data.
References
History
Wed, 25 Sep 2024 15:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Ninjaforms
Ninjaforms ninja Forms |
|
| CPEs | cpe:2.3:a:ninjaforms:ninja_forms:*:*:*:*:*:wordpress:*:* | |
| Vendors & Products |
Ninjaforms
Ninjaforms ninja Forms |
Wed, 18 Sep 2024 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 17 Sep 2024 23:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11. | |
| Title | WordPress Ninja Forms plugin <= 3.8.11 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2024-09-17T23:14:18.954Z
Updated: 2024-09-18T14:35:38.524Z
Reserved: 2024-08-18T21:57:37.333Z
Link: CVE-2024-43999
Vulnrichment
Updated: 2024-09-18T14:35:33.909Z
NVD
Status : Analyzed
Published: 2024-09-18T00:15:09.110
Modified: 2024-09-25T15:15:43.683
Link: CVE-2024-43999
Redhat
No data.