CVE-2024-56060 — Cross-site Scripting in Software LLC Html Forms

CWE-79 — Cross-site Scripting3 documents3 sources

Severity

—N/A

No vector

EPSS

0.2%

top 59.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Link Software LLC Html Forms

Timeline

PublishedJan 2

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms html-forms allows Reflected XSS.This issue affects HTML Forms: from n/a through <= 1.4.1.

Affected Packages1 packages

▶CVEListV5link_software_llc/html_forms1.4.1

🔴Vulnerability Details

GHSA

GHSA-5wf9-7h86-fgr8: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HTML Forms allows Reflected XSS↗2025-01-02

▶

CVEList

WordPress HTML Forms plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability↗2025-01-02

▶