The Interactive Contact Form and Multi Step Form Builder WordPress plugin prior to 3.4 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
funnelforms funnelforms |