Lucene search
Ben Armstrong (Spider Sec Ltd)PATCHSTACK:CEDFB113C2A61E2A802EC52EA7D0F607HistoryJan 22, 2020 - 12:00 a.m.
WordPress Calculated Fields Form plugin <= 1.0.353 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2020-01-2200:00:00
Ben Armstrong (Spider Sec Ltd)
patchstack.com
7
0.001 Low
EPSS
Percentile
27.1%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Ben Armstrong (Spider Sec Ltd) in WordPress Calculated Fields Form plugin (versions <= 1.0.353).
Solution
Update the WordPress Calculated Fields Form plugin to the latest available version (at least 1.0.354)
| CPE | Name | Operator | Version |
|---|---|---|---|
| calculated fields form | le | 1.0.353 |
Related
cvelist
cvelist
CVE-2020-7228
2020-01-22 14:10:31
prion
prion
Cross site scripting
2020-01-22 15:15:00
nvd
nvd
CVE-2020-7228
2020-01-22 15:15:11
wpvulndb
wpvulndb
Calculated Fields Form < 1.0.354 - Authenticated Stored XSS
2020-01-22 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Calculated Fields Form Plugin Cross Site Scripting (CVE-2020-7228)
2020-05-31 00:00:00
cve
cve
CVE-2020-7228
2020-01-22 15:15:11
openvas
openvas
WordPress Calculated Fields Form Plugin <= 1.0.353 XSS Vulnerabilities
2020-01-24 00:00:00