Vulnerabilities

CVE-2025-5730

by Fred · 30/06/2025

The Contact Form Plugin WordPress plugin before 1.1.29 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks.

Assigner : contact@wpscan.com

More information : https://wpscan.com/vulnerability/e1e7f423-f981-413c-a99a-e5927fc1cd0c/

Similar

Tags: Cybersecurity Alert