4 matches found
CVE-2025-28870
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in amocrm amoCRM WebForm amocrm-webform allows DOM-Based XSS.This issue affects amoCRM WebForm: from n/a through = 1.1...
CVE-2025-28870
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in amocrm amoCRM WebForm amocrm-webform allows DOM-Based XSS.This issue affects amoCRM WebForm: from n/a through = 1.1...
CVE-2025-28870 WordPress amoCRM WebForm plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in amocrm amoCRM WebForm amocrm-webform allows DOM-Based XSS.This issue affects amoCRM WebForm: from n/a through = 1.1...
CVE-2025-28870
CVE-2025-28870 is a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin amoCRM WebForm. Affected: amoCRM WebForm ≤ 1.1. Root cause: improper neutralization during web page generation leading to XSS. Access requirement: authenticated (Contributor+) user can trigger the stored XSS....