CVE-2024-7691
02.09.2024, 08:15
The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators.
| Vendor | Product | Version |
|---|---|---|
| projectcaruso | flaming_forms | 𝑥 ≤ 1.0.1 |
𝑥
= Vulnerable software versions