CVE-2024-37948 Information

Description

Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in PootlePress Caxton – Create Pro page layouts in Gutenberg allows Stored XSS.This issue affects Caxton – Create Pro page layouts in Gutenberg: from n/a through 1.30.1.

Reference

https://patchstack.com/database/vulnerability/caxton/wordpress-caxton-create-pro-page-layouts-in-gutenberg-plugin-1-30-1-cross-site-scripting-xss-vulnerability?_s_id=cve