Vulnerabilities > Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-17	CVE-2024-9940	The Calculated Fields Form plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 5.2.45. network low complexity CWE-75	5.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.