WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. FormCraft is one of the form creation plugins used in it. WordPress plugin is an application plugin. WordPress FormCraft plugin versions prior to 1.2.6 are vulnerable to a cross-site scripting vulnerability that results from the plugin’s failure to clean and escape field tags. High-privilege attackers such as administrators can exploit this vulnerability to execute JavaScript code on the client side.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress formcraft plugin | lt | 1.2.6 |