3 matches found
CVE-2015-9539
The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows fscontactform1welcome XSS...
CVE-2015-9539
The Fast Secure Contact Form plugin before 4.0.38 for WordPress allows fscontactform1welcome XSS...
CVE-2015-9539
The CVE-2015-9539 entry concerns the WordPress plugin Fast Secure Contact Form. Affects versions prior to 4.0.38, where the fs_contact_form1[welcome] parameter is vulnerable to cross-site scripting (XSS). Root cause is insufficient input validation/escaping in the form handling, enabling attacker...