CVE-2024-52487 — Cross-site Scripting in Ultimate Classified Listings

CWE-79 — Cross-site Scripting3 documents3 sources

Severity

—N/A

No vector

EPSS

0.1%

top 76.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Webcodingplace Ultimate Classified Listings

Timeline

PublishedDec 2

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webcodingplace Ultimate Classified Listings ultimate-classified-listings allows Stored XSS.This issue affects Ultimate Classified Listings: from n/a through <= 1.7.

Affected Packages1 packages

▶CVEListV5webcodingplace/ultimate_classified_listings1.7

🔴Vulnerability Details

GHSA

GHSA-wm7m-wv4x-65rq: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebCodingPlace Ultimate Classified Listings allo↗2024-12-02

▶

CVEList

WordPress Ultimate Classified Listings plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability↗2024-12-02

▶