CVE-2024-32831

WordPress Accessibility Widget plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lorna Timbah (webgrrrl) Accessibility Widget allows Stored XSS.This issue affects Accessibility Widget: from n/a through 2.2.

We have discovered 1 live websites that are affected by CVE-2024-32831.

Run a Free Instant Scan



Affected Software

Product  Accessibility Widget
Category Wordpress Plugins
Vulnerable Domains1 live websites (less than 0.1% of Accessibility Widget install base)
Vulnerable Versions
  • from 0 through 2.2
Vulnerable Versions Count0 versions ( less than 0.1% of all versions)


Common Weakness Enumeration

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')



Details

  • Published - May 3, 2024
  • Updated - Aug 2, 2024

Credits

  • Joshua Chan (Patchstack Alliance) (finder)

Website Distribution by Country

Number of websites using CVE-2024-32831
Croatia1 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2024-32831

Top websites that are affected by CVE-2024-32831. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****.hr Croatia**,***,***
See full domain list

FAQ

CVE-2024-32831 is Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Accessibility Widget
A total of 1 websites have been identified as vulnerable to CVE-2024-32831, based on global website indexing conducted by WebTechSurvey.
The Accessibility Widget is affected by the CVE-2024-32831 vulnerability.
Accessibility Widget versions up to and including 2.2 are vulnerable to CVE-2024-32831.