0.001 Low
EPSS
Percentile
27.1%
An authenticated user with access to edit or create Calculated Fields Form content can inject javascript into input fields such as ‘field name’ and ‘form name’.
plugins.trac.wordpress.org/changeset/2230479
spider-security.co.uk/blog-cve-2020-7228