Lucene search
Jinson Varghese BehananPATCHSTACK:4501F0AB03FEC3A192B355A0E485EF83HistoryMar 05, 2020 - 12:00 a.m.
WordPress Contact Form by WPForms plugin <= 1.5.8.2 - Authenticated Cross-Site Scripting (XSS) vulnerability
2020-03-0500:00:00
Jinson Varghese Behanan
patchstack.com
4
0.006 Low
EPSS
Percentile
77.9%
Authenticated Cross-Site Scripting (XSS) vulnerability discovered by Jinson Varghese Behanan in WordPress Contact Form by WPForms plugin (versions <= 1.5.8.2).
Solution
Update the WordPress Contact Form by WPForms plugin to the latest available version (at least 1.5.9).
| CPE | Name | Operator | Version |
|---|---|---|---|
| contact form by wpforms | le | 1.5.8.2 |
Related
packetstorm
packetstorm
WordPress WPForms 1.5.9 Cross Site Scripting
2020-03-24 00:00:00
WordPress WP Forms 1.5.8.2 Cross Site Scripting
2020-03-24 00:00:00
checkpoint_advisories
checkpoint_advisories
Wordpress WPForms Plugin Cross-Site Scripting (CVE-2020-10385)
2020-03-31 00:00:00
openvas
openvas
WordPress WPForms Contact Form Plugin < 1.5.9 XSS Vulnerability
2020-03-26 00:00:00
cvelist
cvelist
CVE-2020-10385
2020-03-11 04:07:16
nvd
nvd
CVE-2020-10385
2020-03-24 16:15:12
exploitpack
exploitpack
Wordpress Plugin WPForms 1.5.8.2 - Persistent Cross-Site Scripting
2020-03-24 00:00:00
zdt
zdt
cve
cve
CVE-2020-10385
2020-03-24 16:15:12
wpvulndb
wpvulndb
Contact Form by WPForms < 1.5.9 - Authenticated Cross-Site Scripting (XSS)
2020-03-05 00:00:00
prion
prion
Cross site scripting
2020-03-24 16:15:00
exploitdb
exploitdb
WordPress Plugin WPForms 1.5.8.2 - Persistent Cross-Site Scripting
2020-03-24 00:00:00