WordPress Ninja Forms plugin” (versions <= 3.6.9) AuthenticatedStored Cross-Site Scripting (XSS) vulnerability
2022年6月14日(火) 10:06
重大性スコア(CVS)
Details
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by the Muhammad Adel WordPress Ninja Forms plugin (version <= 3.6.9).
solution
Update the WordPress Ninja Forms plugin to the latest version available (at least 3.6.10).
Sources.
Ninja Forms – The Contact Form Builder That Grows With You
The 100% beginner friendly WordPress form builder. Drag & drop form fields to build beautiful, professional contact forms in minutes.
wordpress.org
