Lucene search
K

4 matches found

OSV
OSV
added 2023/12/29 12:15 p.m.5 views

CVE-2023-50891

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zoho Forms Form plugin for WordPress – Zoho Forms allows Stored XSS.This issue affects Form plugin for WordPress – Zoho Forms: from n/a through 3.0.1...

5.4CVSS7.3AI score0.01076EPSS
Exploits0References1
NVD
NVD
added 2023/12/29 12:15 p.m.26 views

CVE-2023-50891

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zoho Forms Form plugin for WordPress – Zoho Forms allows Stored XSS.This issue affects Form plugin for WordPress – Zoho Forms: from n/a through 3.0.1...

6.5CVSS0.01076EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/29 11:19 a.m.31 views

CVE-2023-50891 WordPress Zoho Forms Plugin <= 3.0.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zoho Forms Form plugin for WordPress – Zoho Forms allows Stored XSS.This issue affects Form plugin for WordPress – Zoho Forms: from n/a through 3.0.1...

6.5CVSS6.7AI score0.01076EPSS
Exploits0References1
CVE
CVE
added 2023/12/29 11:19 a.m.90 views

CVE-2023-50891

CVE-2023-50891 affects the WordPress Form plugin Zoho Forms (Zoho Forms) for WordPress, up to version 3.0.1. The issue arises from improper input neutralization during web page generation, enabling Stored Cross-Site Scripting (XSS) via shortcode, exploitable by authenticated users (Contributor+)....

6.5CVSS6.7AI score0.01076EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder