Lucene search
Ramuel Gall (WordFence)PATCHSTACK:A725FF3CBD31E60565DFA9368F0BEC82HistoryJun 16, 2021 - 12:00 a.m.
WordPress Contact Form Plugin by Fluent Forms <= 3.6.65 - Cross-Site Request Forgery (CSRF) vulnerability leading to stored Cross-Site Scripting (XSS)
2021-06-1600:00:00
Ramuel Gall (WordFence)
patchstack.com
6
wordpress
contact form
csrf
cross-site scripting
update
EPSS
0.002
Percentile
53.4%
Cross-Site Request Forgery (CSRF) vulnerability leading to stored Cross-Site Scripting (XSS) discovered by Ramuel Gall (WordFence) in WordPress Contact Form Plugin by Fluent Forms (versions <= 3.6.65).
Solution
Update the WordPress Contact Form Plugin by Fluent Forms to the latest available version (at least 3.6.67).
Related
cnvd
cnvd
WordPress WP Fluent Forms plugin cross-site request forgery vulnerability
2021-07-09 00:00:00
openvas
openvas
WordPress Contact Form Plugin < 3.6.67 CSRF Vulnerability
2024-01-02 00:00:00
nvd
nvd
CVE-2021-34620
2021-07-07 13:15:08
prion
prion
Cross site scripting
2021-07-07 13:15:00
wpvulndb
wpvulndb
WP Fluent Forms < 3.6.67 - Cross-Site Request Forgery (CSRF)
2021-06-17 00:00:00
cvelist
cvelist
cve
cve
CVE-2021-34620
2021-07-07 13:15:08