3 matches found
CVE-2025-0470
creationtimestamp| type| source ---|---|--- 2025-01-31 03:29:56+00:00| seen| https://infosec.exchange/users/cve/statuses/113920848418961959 2025-01-31 04:16:08+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgz5aooriv2e 2025-01-31 05:24:34+00:00| seen|...
CVE-2025-0470 Forminator <= 1.38.2 - Reflected Cross-Site Scripting via Title Parameter
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the title parameter in all versions up to, and including, 1.38.2 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-0470 Forminator <= 1.38.2 - Reflected Cross-Site Scripting via Title Parameter
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the title parameter in all versions up to, and including, 1.38.2 due to insufficient input sanitization and output escaping. This makes it possible for...