Vulnerability — CVE-2023-3134

CVE-2023-3134

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-3134
Description:: The Forminator WordPress plugin before 1.24.4 does not properly escape values that are being reflected inside form fields that use pre-populated query parameters, which could lead to reflected XSS attacks.
Last updated date:: 10/29/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/03/2023
Reference url to background: https://wpscan.com/vulnerability/6d50d3cc-7563-42c4-977b-f834fee711da

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/29/2023
Reference url to background: https://www.onvio.nl/nieuws/research-day-discovering-vulnerabilities-in-wordpress-plugins