CVE-2024-37539

Publication date

2024-07-06 12:13:09

Family

Patchstack

State

PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in Delower WP To Do allows Stored XSS.This issue affects WP To Do: from n/a through 1.3.0.