WordPress FluentForm plugin <= 4.3.12 - CSV Injection vulnerability

2022-10-1700:00:00

Francesco Carlucci

patchstack.com

wordpress

csv injection

vulnerability

update

francesco carlucci

EPSS

0.003

Percentile

68.8%

CSV Injection vulnerability discovered by Francesco Carlucci in WordPress FluentForm plugin (versions <= 4.3.12).

Solution

           Update the WordPress Contact Form Plugin plugin to the latest available version (at least 4.3.13).

wpscan.com/vulnerability/e2a59481-db45-4b8e-b17a-447303469364

EPSS

0.003

Percentile

68.8%

Related for PATCHSTACK:FD4F24320421DD244237245A680B48F6