CVE-2024-13099 | Widget4Call Plugin up to 1.0.7 on WordPress cross site scripting

Posted by Angelo Barbosa | Feb 1, 2025 | CVE

A vulnerability classified as problematic was found in Widget4Call Plugin up to 1.0.7 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-13099. The attack can be launched remotely. There is no exploit available.

CVE-2024-13099 | Widget4Call Plugin up to 1.0.7 on WordPress cross site scripting

Related Posts

CVE-2024-34161 | F5 NGINX Plus/NGINX Open Source HTTP3 QUIC memory leak (K000139627)

CVE-2025-23055 | HPE Aruba Networking Fabric Composer AFC up to 7.1.0 Web Management Interface cross site scripting

CVE-2024-51772 | HPE Aruba Networking ClearPass Policy Manager up to 6.11.9/6.12.2 Web-based Management Interface os command injection

CVE-2020-26310 | blowsie Pure-JavaScript-HTML5-Parser 2020 redos (ID 14)