Lucene search
China National Vulnerability DatabaseCNVD-2022-58230HistoryJul 06, 2022 - 12:00 a.m.
WordPress Ninja Forms Contact Form plugin跨站脚本漏洞(CNVD-2022-58230)
2022-07-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
25.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of WordPress Ninja Forms Contact Form plugin prior to version 3.6.10, which stems from a failure to sort and escape some imported data. An attacker could exploit this vulnerability to perform cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress ninja forms contact form plugin | lt | 3.6.10 |
Related
cvelist
cvelist
nvd
nvd
CVE-2021-25066
2022-07-04 13:15:08
patchstack
patchstack
wpvulndb
wpvulndb
Ninja Forms < 3.6.10 - Admin+ Stored Cross-Site Scripting via Import
2022-06-10 00:00:00
wpexploit
wpexploit
Ninja Forms < 3.6.10 - Admin+ Stored Cross-Site Scripting via Import
2022-06-10 00:00:00
cve
cve
CVE-2021-25066
2022-07-04 13:15:08
prion
prion
Cross site scripting
2022-07-04 13:15:00
openvas
openvas
WordPress Ninja Forms Contact Form Plugin < 3.6.10 Multiple Vulnerabilities
2022-07-05 00:00:00