Lucene search
Brandon James RoldanPATCHSTACK:C69D49AF44CFCA983DFA7030D4404E23HistoryMar 07, 2022 - 12:00 a.m.
WordPress Drag and Drop Multiple File Upload – Contact Form 7 plugin <= 1.3.6.2 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-03-0700:00:00
Brandon James Roldan
patchstack.com
17
wordpress
plugin
xss
vulnerability
contact form 7
EPSS
0.001
Percentile
41.9%
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Brandon James Roldan in WordPress Drag and Drop Multiple File Upload – Contact Form 7 plugin (versions <= 1.3.6.2).
Solution
Update the WordPress Drag and Drop Multiple File Upload – Contact Form 7 plugin to the latest available version (at least 1.3.6.3).
Related
nvd
nvd
CVE-2022-0595
2022-03-28 18:15:09
cnvd
cnvd
cvelist
cvelist
hackerone
hackerone
Nord Security: Stored XSS at nordvpn.com
2023-01-19 23:35:23
cve
cve
CVE-2022-0595
2022-03-28 18:15:09
wpexploit
wpexploit
prion
prion
Cross site scripting
2022-03-28 18:15:00
wpvulndb
wpvulndb
nuclei
nuclei
WordPress Contact Form 7 <1.3.6.3 - Stored Cross-Site Scripting
2022-04-24 09:53:15