Lucene search
K

68 matches found

CNVD
CNVD
added 2017/03/02 12:0 a.m.1 views

Multiple Vulnerabilities in WordPress Contact Form Manager Plugin

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language , the platform supports PHP and MySQL server set up a personal blog site . Cross-site scripting and cross-site request forgery vulnerabilities exist in the WordPress Contact Form Manager...

6.4AI score
Exploits0References1
exploitpack
exploitpack
added 2017/03/01 12:0 a.m.39 views

WordPress Plugin Contact Form Manager - Cross-Site Request Forgery Cross-Site Scripting

WordPress Plugin Contact Form Manager - Cross-Site Request Forgery Cross-Site Scripting !-- Source: https://sumofpwn.nl/advisory/2016/crosssiterequestforgerycrosssitescriptingincontactformmanagerwordpressplugin.html Abstract It was discovered that Contact Form Manager does not protect against...

0.7AI score
Exploits0
0day.today
0day.today
added 2017/03/01 12:0 a.m.41 views

WordPress Contact Form Manager Plugin - Cross-Site Request Forgery / Cross-Site Scripting Vulnerabil

Exploit for php platform in category web applications !-- Source: https://sumofpwn.nl/advisory/2016/crosssiterequestforgerycrosssitescriptingincontactformmanagerwordpressplugin.html Abstract It was discovered that Contact Form Manager does not protect against Cross-Site Request Forgery. This allo...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/03/01 12:0 a.m.31 views

WordPress Plugin Contact Form Manager - Cross-Site Request Forgery / Cross-Site Scripting

!-- Source: https://sumofpwn.nl/advisory/2016/crosssiterequestforgerycrosssitescriptingincontactformmanagerwordpressplugin.html Abstract It was discovered that Contact Form Manager does not protect against Cross-Site Request Forgery. This allows an attacker to change arbitrary Contact Form Manage...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2017/03/01 12:0 a.m.9 views

Contact Form Manager - CSRF & Cross-Site Scripting (XSS)

The Contact Form Manager WordPress plugin was affected by a CSRF & Cross-Site Scripting XSS security vulnerability...

2.5AI score
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2015/11/24 12:0 a.m.8 views

WordPress Contact Form Manager Plugin <= 1.4.1 - Reflected Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.3AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/11/24 12:0 a.m.12 views

Contact Form Manager <= 1.4.1 - Authenticated Reflected Cross-Site Scripting (XSS)

The Contact Form Manager WordPress plugin was affected by an Authenticated Reflected Cross-Site Scripting XSS security vulnerability...

1.7AI score
Exploits0References3Affected Software1
WPVulnDB
WPVulnDB
added 2015/10/23 12:0 a.m.14 views

Form Manager <= 1.7.2 - Authenticated Remote Comm& Execution (RCE)

The wordpress-form-manager WordPress plugin was affected by an Authenticated Remote Comm& Execution RCE security vulnerability...

7.5CVSS3.5AI score0.05972EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder