CVE-2024-49236

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Hafiz Uddin Ahmed Crazy Call To Action Box crazy-call-to-action-box allows DOM-Based XSS.This issue affects Crazy Call To Action Box: from n/a through <= 1.0.5.