Cross-Site Scripting Vulnerability in User Referral Plugin by Md Maruf Adnan Sami
CVE-2024-56037
7.1HIGH
What is CVE-2024-56037?
A reflected cross-site scripting (XSS) vulnerability exists in the User Referral plugin developed by Md Maruf Adnan Sami. This vulnerability occurs due to improper neutralization of user input during web page generation, allowing attackers to inject malicious scripts. When exploited, this can compromise user confidentiality and integrity, as well as lead to unauthorized access to sensitive information. Affected versions range from n/a through 8.0, posing a significant risk to users relying on this functionality for referral management.
Affected Version(s)
User Referral <= 8.0