Medium severity5.9NVD Advisory· Published Jun 2, 2024· Updated Jun 17, 2026
CVE-2024-35646
CVE-2024-35646
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Erez Hadas-Sonnenschein Smartarget Message Bar smartarget-message-bar.This issue affects Smartarget Message Bar: from n/a through <= 1.5.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.5+ 1 more
- (no CPE)range: <=1.5
- (no CPE)range: <=1.5
Patches
Vulnerability mechanics
References
2- patchstack.com/database/Wordpress/Plugin/smartarget-message-bar/vulnerability/wordpress-smartarget-message-bar-plugin-1-3-cross-site-scripting-xss-vulnerabilitynvd
- patchstack.com/database/vulnerability/smartarget-message-bar/wordpress-smartarget-message-bar-plugin-1-3-cross-site-scripting-xss-vulnerabilitynvd
News mentions
0No linked articles in our index yet.