Описание
The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.4.1 does not properly escape user-controlled input when it is reflected in some of its AJAX actions.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.4.1 (исключая)
cpe:2.3:a:reputeinfosystems:arforms:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 47%
0.0024
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.3
github
больше 1 года назад
The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.4.1 does not properly escape user-controlled input when it is reflected in some of its AJAX actions.
EPSS
Процентиль: 47%
0.0024
Низкий
6.3 Medium
CVSS3
Дефекты
CWE-79