Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in paginas/vista-previa-form.php in the EnvialoSimple: Email Marketing and Newsletters envialosimple-email-marketing-y-newsletters-gratis plugin before 1.98 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Form...