Unrated severityNVD Advisory· Published Jul 21, 2024· Updated Apr 28, 2026
WordPress WS Contact Form plugin <= 1.3.7 - Cross Site Scripting (XSS) vulnerability
CVE-2024-37537
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in UusWeb.Ee WS Contact Form allows Stored XSS.This issue affects WS Contact Form: from n/a through 1.3.7.
Affected products
1- Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.