Lucene search
Ptsfence (Patchstack Alliance)PATCHSTACK:6C76CC234FB590ACF89F88E7701CB732HistorySep 08, 2022 - 12:00 a.m.
WordPress Contact Form By Mega Forms plugin <= 1.2.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-09-0800:00:00
ptsfence (Patchstack Alliance)
patchstack.com
7
0.001 Low
EPSS
Percentile
22.9%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by ptsfence (Patchstack Alliance) in WordPress Contact Form By Mega Forms plugin (versions <= 1.2.4).
Solution
Update the WordPress Contact Form By Mega Forms – Drag and Drop Form Builder plugin to the latest available version (at least 1.2.5).
| CPE | Name | Operator | Version |
|---|---|---|---|
| contact form by mega forms – drag and drop form builder | le | 1.2.4 |
Related
prion
prion
Cross site scripting
2022-09-09 15:15:00
cve
cve
CVE-2022-40191
2022-09-09 15:15:15
wpvulndb
wpvulndb
Contact Form By Mega Forms < 1.2.5 - Subscriber+ Stored Cross-Site Scripting
2022-09-08 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2022-40191
2022-09-09 15:15:15