CVE-2025-8315 | WP Easy Contact Plugin up to 4.0.1 on WordPress noaccess_msg cross site scripting

Inserito da Angelo Barbosa | Ago 4, 2025 | CVE

A vulnerability classified as problematic has been found in WP Easy Contact Plugin up to 4.0.1 on WordPress. Affected is an unknown function. The manipulation of the argument noaccess_msg leads to cross site scripting.

This vulnerability is traded as CVE-2025-8315. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-8315 | WP Easy Contact Plugin up to 4.0.1 on WordPress noaccess_msg cross site scripting

Post correlati

CVE-2024-20809 | Samsung Mobile Nearby Device Scanning prior 11.1.14.7 access control

CVE-2024-4021 | Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 up to 4.1.2.15 Configuration Setting /ndmComponents.js information disclosure

CVE-2024-55950 | Eugeny tabby up to 1.0.215 Environment Variable DYLD_INSERT_LIBRARIES default permission (GHSA-jx33-9jc7-24gc)

CVE-2024-45718 | SolarWinds Kiwi Syslog NG up to 1.3 Configuration File cleartext storage