RSS   Vulnerabilities for 'Clean and simple contact form'   RSS

2014-11-17
 
CVE-2014-8955

 

 
Cross-site scripting (XSS) vulnerability in the Contact Form Clean and Simple (clean-and-simple-contact-form-by-meg-nicholas) plugin 4.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the cscf[name] parameter to contact-us/.

 


Copyright 2019, cxsecurity.com

 

Back to Top