Cross-site scripting (XSS) vulnerability in the Contact Bank plugin prior to 2.0.20 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the Label field, related to form layout configuration. NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tech-banker contact_bank 2.0.16 |
||
tech-banker contact_bank 2.0.14 |
||
tech-banker contact_bank 2.0.7 |
||
tech-banker contact_bank |
||
tech-banker contact_bank 2.0.18 |
||
tech-banker contact_bank 2.0.4 |
||
tech-banker contact_bank 2.0.3 |
||
tech-banker contact_bank 2.0.2 |
||
tech-banker contact_bank 2.0.1 |
||
tech-banker contact_bank 2.0.12 |
||
tech-banker contact_bank 2.0.11 |
||
tech-banker contact_bank 2.0.10 |
||
tech-banker contact_bank 2.0.9 |
||
tech-banker contact_bank 2.0.17 |
||
tech-banker contact_bank 2.0.15 |
||
tech-banker contact_bank 2.0.13 |
||
tech-banker contact_bank 2.0.8 |
||
tech-banker contact_bank 2.0.6 |
||
tech-banker contact_bank 2.0.5 |
||
tech-banker contact_bank 2.0.0 |