Vulnerability — CVE-2023-2718

CVE-2023-2718

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-2718
Description:: The Contact Form Email WordPress plugin before 1.3.38 does not escape submitted values before displaying them in the HTML, leading to a Stored XSS vulnerability.
Last updated date:: 10/29/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/16/2023
Reference url to background: https://wpscan.com/vulnerability/8ad824a6-2d49-4f02-8252-393c59aa9705

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/29/2023
Reference url to background: https://www.onvio.nl/nieuws/research-day-discovering-vulnerabilities-in-wordpress-plugins