CVE-2024-7691
EUVD-2024-4857602.09.2024, 08:15
The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| projectcaruso | flaming_forms | 𝑥 ≤ 1.0.1 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| projectcaruso | flaming_forms | 𝑥 ≤ 1.0.1 | ADP |