3 matches found
CVE-2024-9614
CVE-2024-9614 affects the WordPress plugin Constant Contact Forms by MailMunch. It is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper escaping in add_query_arg across all versions up to 2.1.2. Unauthenticated attackers can induce user-visible script execution by tricking a...
CVE-2024-22137
CVE-2024-22137 affects Constant Contact Forms by MailMunch (WordPress plugin)
CVE-2023-45647
CVE-2023-45647 affects MailMunch Constant Contact Forms by MailMunch (WordPress plugin) ≤ 2.0.10. Root cause: Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to perform unintended actions on behalf of an authenticated user. Impact details in sources show potential hig...