Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-24700
HistoryNov 23, 2021 - 8:15 p.m.

Cross site scripting

2021-11-2320:15:00
PRIOn knowledge base
www.prio-n.com
1

0.001 Low

EPSS

Percentile

24.8%

The Forminator WordPress plugin before 1.15.4 does not sanitize and escape the email field label, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed

CPENameOperatorVersion
forminatorlt1.15.4

0.001 Low

EPSS

Percentile

24.8%