Lucene search
Asif Nawaz Minhas (Patchstack Alliance)PATCHSTACK:819D3C1EA5FFCB231C257D17C195E1EAHistoryJun 07, 2022 - 12:00 a.m.
WordPress Ninja Forms Contact Form plugin <= 3.6.9 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-06-0700:00:00
Asif Nawaz Minhas (Patchstack Alliance)
patchstack.com
17
0.001 Low
EPSS
Percentile
22.9%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Asif Nawaz Minhas (Patchstack Alliance) in WordPress Ninja Forms Contact Form plugin (versions <= 3.6.9).
Solution
Update the WordPress Ninja Forms Contact Form plugin to the latest available version (at least 3.6.10).
| CPE | Name | Operator | Version |
|---|---|---|---|
| ninja forms | le | 3.6.9 |
Related
cvelist
cvelist
cnvd
cnvd
WordPress plugin Ninja Forms Contact Form cross-site scripting vulnerability
2022-06-20 00:00:00
prion
prion
Cross site scripting
2022-06-16 18:15:00
openvas
openvas
WordPress Ninja Forms Plugin <= 3.6.9 XSS Vulnerability
2022-06-22 00:00:00
cve
cve
CVE-2021-36827
2022-06-16 18:15:09
nvd
nvd
CVE-2021-36827
2022-06-16 18:15:09