Accesspressthemes - Form Store To Db CVE

Filtered by vendor Accesspressthemes Subscribe

Filtered by product Form Store To Db

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-25107	1 Accesspressthemes	1 Form Store To Db	2022-02-22	4.3 MEDIUM	6.1 MEDIUM
The Form Store to DB WordPress plugin before 1.1.1 does not sanitise and escape parameter keys before outputting it back in the created entry, allowing unauthenticated attacker to perform Cross-Site Scripting attacks against admin

Vulnerabilities (CVE)