RSS   Vulnerabilities for 'Form store to db'   RSS

2022-02-14
 
CVE-2021-25107

CWE-79
 

 
The Form Store to DB WordPress plugin before 1.1.1 does not sanitise and escape parameter keys before outputting it back in the created entry, allowing unauthenticated attacker to perform Cross-Site Scripting attacks against admin

 

 >>> Vendor: Accesspressthemes 9 Products
Ultimate-form-builder-lite
Anonymous post pro
Wp floating menu
Accesspress social icons
Access demo importer
Wp cookie user info
Form store to db
Ap custom testimonial
Ap mega menu


Copyright 2024, cxsecurity.com

 

Back to Top