XSS in the Ninja Forms plugin prior to 3.3.18 for WordPress allows Remote malicious users to execute JavaScript via the includes/Admin/Menus/Submissions.php (aka submissions page) begin_date, end_date, or form_id parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ninjaforma ninja forms |