EPSS
Percentile
50.0%
A cross-site scripting vulnerability exists in Form Tools 3.0.20 and earlier. An attacker could use the submission_id parameter to trigger a stored cross-site scripting attack when viewing a form.