3 matches found
CVE-2024-8633
creationtimestamp| type| source ---|---|--- 2024-09-26 14:39:08+00:00| seen| https://t.me/cvedetector/6409...
CVE-2024-8633 Form Maker <= 1.15.27 - Authenticated (Administrator+) Stored Cross-Site Scripting
The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.15.27 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers...
WordPress Form Maker by 10Web Plugin <= 1.15.27 is vulnerable to Cross Site Scripting (XSS)
Software Form Maker by 10Web Type Plugin Vulnerable versions = 1.15.27 Fixed in 1.15.28 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8633 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e9307003321a Credits Joel Indra...