WordPress Calculated Fields Form Plugin <= 1.2.52 is vulnerable to Cross Site Scripting (XSS)

Software Calculated Fields Form Type Plugin Vulnerable versions = 1.2.52 Fixed in 1.2.53 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0963 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 51ba9c951440 Credits Richard Telleng...

WordPress Calculated Fields Form Plugin <= 1.2.28 is vulnerable to Open Redirection

Software Calculated Fields Form Type Plugin Vulnerable versions = 1.2.28 Fixed in 1.2.29 OWASP Top 10 A3: Injection Classification Open Redirection CVE CVE-2023-51517 Patch priority Low CVSS severity Low 4.1 Developer Claim ownership PSID 4cc332044480 Credits Ngô Thiên An ancorn from VNPT-VCI...

WordPress Calculated Fields Form Plugin <= 1.2.40 is vulnerable to Cross Site Scripting (XSS)

Software Calculated Fields Form Type Plugin Vulnerable versions = 1.2.40 Fixed in 1.2.41 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6446 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 412adf4208bf Credits emad Required...

WordPress Calculated Fields Form 1.0.10 SQL Injection

Calculated Fields Form Wordpress Plugin = 1.0.10 - Remote SQL Injection Vulnerability + Author: Ibrahim Raafat + Twitter: https://twitter.com/RaafatSEC + Plugin: https://wordpress.org/plugins/calculated-fields-form/ + TimeLine - Feb 6 2015, The vulnerabilities reported - Feb 7 2015, Response and...