CVE-2025-3513 | SureForms Plugin up to 1.4.3 on WordPress Form Setting cross site scripting

Inserito da Angelo Barbosa | Mag 2, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in SureForms Plugin up to 1.4.3 on WordPress. Affected by this issue is some unknown functionality of the component Form Setting Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-3513. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-3513 | SureForms Plugin up to 1.4.3 on WordPress Form Setting cross site scripting

Post correlati

CVE-2024-3101 | mintplex-labs anything-llm up to 0.x Multi-User Mode multi_user_mode input validation

CVE-2023-38267 | IBM Security Verify Access Appliance up to 10.0.6.1 Configuration missing encryption (XFDB-260584)

CVE-2023-6116 | Hanwha Vision XRN-420S up to 5.01.52 HTTP Request stack-based overflow

CVE-2024-12112 | Easy Form Builder Plugin up to 3.8.8 on WordPress authorization