2 matches found
CVE-2024-6521
creationtimestamp| type| source ---|---|--- 2024-07-27 14:57:07+00:00| seen| https://t.me/cvedetector/1752 2024-09-07 05:42:04+00:00| published-proof-of-concept| https://t.me/codeb0ss/1524 2025-01-10 16:43:37+00:00| published-proof-of-concept| https://t.me/lubuklinggaucyber1/204...
CVE-2024-6521 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.19 - Authenticated (Administrator+) Stored Cross-Site Scripting
The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via dropdown fields in all versions up to, and including, 5.1.19 due to insufficient input sanitization and output escaping. This makes it...