Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-14430
HistoryJul 25, 2018 - 11:00 p.m.

CVE-2018-14430

2018-07-2523:00:00
mitre
www.cve.org

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.6%

JSON

The Mondula Multi Step Form plugin through 1.2.5 for WordPress allows XSS via the fw_data [id][1], fw_data [id][2], fw_data [id][3], fw_data [id][4], or email field of the contact form, exploitable with an fw_send_email action to wp-admin/admin-ajax.php.

Related

wpexploit 1
cve 1
prion 1
checkpoint_advisories 1
patchstack 1
wpvulndb 1
nvd 1
openvas 2
mageia 1
wpexploit
wpexploit
Multi Step Form <= 1.2.5 - Multiple Unauthenticated Reflected XSS
2018-07-20 00:00:00
cve
cve
CVE-2018-14430
2018-07-25 23:29:00
prion
prion
Design/Logic Flaw
2018-07-25 23:29:00
checkpoint_advisories
checkpoint_advisories
Multi Step Form Multiple Unauthenticated Reflected XSS (CVE-2018-14430)
2018-08-29 00:00:00
patchstack
patchstack
WordPress Multi Step Form plugin <= 1.2.5 - Multiple Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerabilities
2018-08-09 00:00:00
wpvulndb
wpvulndb
Multi Step Form <= 1.2.5 - Multiple Unauthenticated Reflected XSS
2018-07-20 00:00:00
nvd
nvd
CVE-2018-14430
2018-07-25 23:29:00
openvas
openvas
WordPress Multi Step Form Plugin < 1.2.6 Multiple XSS Vulnerabilities
2019-02-18 00:00:00
Mageia: Security Advisory (MGASA-2018-0388)
2022-01-28 00:00:00
mageia
mageia
Updated libextratcor packages fix security vulnerability
2018-09-21 19:26:22

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.6%

JSON
Related for CVELIST:CVE-2018-14430
wpexploit1cve1prion1checkpoint_advisories1patchstack1wpvulndb1nvd1openvas2mageia1