3 matches found
WordPress Contact Form DB Plugin Cross-Site Scripting (CVE-2015-2040)
A cross-site scripting vulnerability has been reported in WordPress Contact Form DB Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
CVE-2015-2040
CVE-2015-2040 describes a cross-site scripting (XSS) vulnerability in the WordPress plugin Contact Form DB (CFDB / contact-form-7-to-database-extension) version 2.8.26. The issue allows remote attackers to inject arbitrary script/HTML via the submit_time parameter on the CF7DBPluginSubmissions pa...
CVE-2015-2040
Cross-site scripting XSS vulnerability in the Contact Form DB aka CFDB and contact-form-7-to-database-extension plugin 2.8.26 for WordPress allows remote attackers to inject arbitrary web script or HTML via the submittime parameter in the CF7DBPluginSubmissions page to wp-admin/admin.php...