CVE-2024-1585 | Metform Elementor Contact Form Builder Plugin up to 3.8.3 on WordPress Shortcode cross site scripting

Posted by Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability was found in Metform Elementor Contact Form Builder Plugin up to 3.8.3 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-1585. The attack can be launched remotely. There is no exploit available.

CVE-2024-1585 | Metform Elementor Contact Form Builder Plugin up to 3.8.3 on WordPress Shortcode cross site scripting

Related Posts

CVE-2023-51526 | Brett Shumaker Simple Staff List Plugin up to 2.2.4 on WordPress authorization

CVE-2024-1870 | Colibri Page Builder Plugin up to 1.0.260 on WordPress authorization

CVE-2023-28452 | CoreDNS up to 1.10.1 Resolver denial of service

CVE-2024-24906 | Dell Secure Connect Gateway prior 5.22.00.16 Policy Page cross site scripting (dsa-2024-077)