PT-2024-14250 · Unknown · Everest Forms

Name of the Vulnerable Software and Affected Versions: Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease! versions n/a through 2.0.4.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-sit...

WordPress Everest Forms Plugin <= 2.0.4.1 is vulnerable to Cross Site Scripting (XSS)

Software Everest Forms Type Plugin Vulnerable versions = 2.0.4.1 Fixed in 2.0.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-51695 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d679b5b20d8a Credits Robert DeVore Required privilege...

CVE-2011-4563

Cross-site scripting XSS vulnerability in index.php in JAKCMS 2.0.4.1, and possibly other versions before 2.2.6 2011-09-23, allows remote attackers to inject arbitrary web script or HTML via the userpost parameter in a PM request, related to tinymce. NOTE: some of these details are obtained from...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in JAKCMS 2.0.4.1, and possibly other versions before 2.2.6 2011-09-23, allows remote attackers to inject arbitrary web script or HTML via the userpost parameter in a PM request, related to tinymce. NOTE: some of these details are obtained from...

CVE-2011-4563

Cross-site scripting XSS vulnerability in index.php in JAKCMS 2.0.4.1, and possibly other versions before 2.2.6 2011-09-23, allows remote attackers to inject arbitrary web script or HTML via the userpost parameter in a PM request, related to tinymce. NOTE: some of these details are obtained from...