Wpeverest - Everest Forms CVE

Filtered by vendor Wpeverest Subscribe

Filtered by product Everest Forms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-24907	1 Wpeverest	1 Everest Forms	2021-12-27	4.3 MEDIUM	6.1 MEDIUM
The Contact Form, Drag and Drop Form Builder for WordPress plugin before 1.8.0 does not escape the status parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue

Vulnerabilities (CVE)