EUVD-2022-30261

Malicious code in bioql PyPI...

WordPress Contact Form X plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is an application plugin for WordPress. A cross-site scripting vulnerability exists in WordPress Contact Form X plugin version 2.4 and earlier. The vulnerability stems from a la...

CVE-2022-25601

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

CVE-2022-25601

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

Cross site scripting

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

CVE-2022-25601

The CVE-2022-25601 issue affects the WordPress plugin Contact Form X, specifically versions

CVE-2022-25601 WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

CVE-2022-25601 WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin versions = 2.4...

WordPress plugin Contact Form X跨站脚本漏洞

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is an application plugin for WordPress. A cross-site scripting vulnerability exists in WordPress Contact Form X plugin version 2.4 and earlier. The vulnerability stems from a la...

Contact Form X < 2.4.1 - Reflected Cross-Site Scripting

The plugin does not escape the tab parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue PoC https://example.com/wp-admin/options-general.php?page=contactformx="+style=animation-name:rotation+onanimationstart=alert/XSS///...

WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Ex.Mi Patchstack in WordPress Contact Form X plugin versions = 2.4. Solution Update the WordPress Contact Form X plugin to the latest available version at least 2.4.1...

Contact Form X < 2.4.1 - Reflected Cross-Site Scripting

The plugin does not escape the tab parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue https://example.com/wp-admin/options-general.php?page=contactformx&tab="+style=animation-name:rotation+onanimationstart=alert/XSS///...