CVE-2024-2198 | BestWebSoft Contact Form Plugin up to 4.2.8 on WordPress cntctfrm_contact_address cross site scripting

Posted by Angelo Barbosa | Mar 14, 2024 | CVE

A vulnerability has been found in BestWebSoft Contact Form Plugin up to 4.2.8 on WordPress and classified as problematic. This vulnerability affects the function cntctfrm_contact_address. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-2198. The attack can be initiated remotely. There is no exploit available.

CVE-2024-2198 | BestWebSoft Contact Form Plugin up to 4.2.8 on WordPress cntctfrm_contact_address cross site scripting

Related Posts

CVE-2024-34097 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 use after free (apsb24-29)

CVE-2024-22862 | FFmpeg up to 6.0 JJPEG XL Parser integer overflow

CVE-2023-52240 | Kantega SAML SSO OIDC Kerberos Single Sign-on App cross site scripting

CVE-2024-0799 | Arcserve Unified Data Protection up to 8.1/9.2 wizardLogin doLogin improper authentication