Ninja_forms 漏洞列表
共找到 2 个与 Ninja_forms 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2024-7354: Ninja Forms 3.8.6-3.8.10 - Cross-Site Scripting POC
The Ninja Forms WordPress plugin before 3.8.11 does not escape an URL before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin -
CVE-2024-7354: Ninja Forms 3.8.6-3.8.10 - Cross-Site Scripting POC
The Ninja Forms WordPress plugin before 3.8.11 does not escape an URL before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin