Description

WordPress Plugin Forms-Form builder and Contact form is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin Forms-Form builder and Contact form version 1.4.7 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.8 or latest

References

https://plugins.svn.wordpress.org/forms-contact/trunk/readme.txt

Related Vulnerabilities

WordPress Plugin Form Builder-Create Responsive Contact Forms Cross-Site Scripting (1.9.8.3)

WordPress Plugin CiviCRM Security Bypass (5.35.1)

WordPress Plugin Japanized For WooCommerce Cross-Site Scripting (2.5.6)

IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-4153)

WordPress Plugin CM Download Manager Code Injection (2.0.3)

Severity

High

Tags

Missing Update