3 matches found
WordPress Calculated Fields Form Plugin Cross Site Scripting (CVE-2020-7228)
A stored cross-site scripting vulnerability exists in Calculated Fields Form plugin of WordPress. The vulnerability is due to insufficient sanitization of user input to "field name" and "form name" of a form in the web application of the plugin...
CVE-2020-7228
CVE-2020-7228 affects WordPress Calculated Fields Form plugin (versions
CVE-2020-7228
The Calculated Fields Form plugin through 1.0.353 for WordPress suffers from multiple Stored XSS vulnerabilities present in the input forms. These can be exploited by an authenticated user...