3 matches found
CVE-2023-50896
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in weForms weForms – Easy Drag & Drop Contact Form Builder For WordPress allows Stored XSS.This issue affects weForms – Easy Drag & Drop Contact Form Builder For WordPress: from n/a through 1.6.17...
CVE-2023-50896 WordPress weForms Plugin <= 1.6.17 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in weForms weForms – Easy Drag & Drop Contact Form Builder For WordPress allows Stored XSS.This issue affects weForms – Easy Drag & Drop Contact Form Builder For WordPress: from n/a through 1.6.17...
WordPress weForms Plugin <= 1.6.17 is vulnerable to Cross Site Scripting (XSS)
Software weForms Type Plugin Vulnerable versions = 1.6.17 Fixed in 1.6.18 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-50896 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 17a0a696ff2c Credits emad Required privilege Administrator...