CVE-2024-37429

UNKNOWN 0.0

WordPress Login with phone number plugin <= 1.7.35 - Admin+ Cross Site Scripting (XSS) vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Hamid Alinia Login with phone number login-with-phone-number.This issue affects Login with phone number: from n/a through <= 1.7.35.

CWE	CWE-79
Vendor	hamid alinia
Product	login with phone number
Published	Jul 22, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for hamid alinia login with phone number

Be the first to know when new unknown vulnerabilities affecting hamid alinia login with phone number are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Hamid Alinia / Login with phone number

0 ≤ 1.7.35

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/login-with-phone-number/vulnerability/wordpress-login-with-phone-number-plugin-1-7-35-admin-cross-site-scripting-xss-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/login-with-phone-number/wordpress-login-with-phone-number-plugin-1-7-35-admin-cross-site-scripting-xss-vulnerability?_s_id=cve

Credits

LuxF0z | Patchstack Bug Bounty Program