CVE-2024-2791 | Metform Elementor Contact Form Builder Plugin up to 3.8.5 on WordPress Widgets cross site scripting

Inserito da Angelo Barbosa | Apr 1, 2024 | CVE

A vulnerability classified as problematic has been found in Metform Elementor Contact Form Builder Plugin up to 3.8.5 on WordPress. Affected is an unknown function of the component Widgets. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-2791. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-2791 | Metform Elementor Contact Form Builder Plugin up to 3.8.5 on WordPress Widgets cross site scripting

Post correlati

CVE-2024-3061 | HUSKY Plugin up to 1.3.5.2 on WordPress file inclusion

CVE-2023-51079 | mvel 2.5.0 ParseTools.subCompileExpression denial of service (Issue 348)

CVE-2024-38890 | Horizon Business Services Caterease up to 24.0.1.2405 authentication replay

CVE-2024-2449 | Progress LoadMaster up to 7.1.35.10/7.2.48.10/7.2.54.8/7.2.59.2 cross-site request forgery