How severe is CVE-2024-10562?

This vulnerability has a severity rating of LOW with a CVSS score of 2.7 out of 10.

What type of vulnerability is CVE-2024-10562?

This is classified as CWE-79, which is a common weakness in software security.

CVE-2024-10562

LOW Year: 2024

CVSS v3 Score

2.7

Low

Weakness Type

CWE-79

View all →

Vulnerability Description

The Form Maker by 10Web WordPress plugin before 1.15.31 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

CVE-2016-0370

LOW

CVSS:2.7(Low)

Cross-site scripting (XSS) vulnerability in IBM Forms Experience Builder 8.5.x and 8.6.x before 8.6.3 allows remote authenticated users to inject arbitrary web script or HTML via crafted input to an a...

CWE-792016

CVE-2018-0532

LOW

CVSS:2.7(Low)

Cybozu Garoon 3.0.0 to 4.2.6 allows remote authenticated attackers to bypass access restriction to alter setting data of the Standard database via unspecified vectors.

CWE-792018