Unrated severityNVD Advisory· Published Jul 4, 2024· Updated Apr 28, 2026
WordPress Newspack Campaigns plugin <= 2.31.1 - Cross Site Scripting (XSS) vulnerability
CVE-2024-37476
Description
Cross Site Scripting (XSS) vulnerability in Automattic Newspack Campaigns allows Stored XSS.This issue affects Newspack Campaigns: from n/a through 2.31.1.
Affected products
2<=2.31.1+ 1 more
- (no CPE)range: <=2.31.1
- (no CPE)range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.