0.009 Low
EPSS
Percentile
82.7%
Because of this vulnerability in cforms-css.php, the attackers can execute arbitrary PHP code via a URL in the “tm” parameter.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0560