Vulnerabilities > Contactus > Contact Form 7 Integrations > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-09-26 | CVE-2014-6445 | Cross-Site Scripting vulnerability in Contactus Contact Form 7 Integrations Multiple cross-site scripting (XSS) vulnerabilities in includes/toAdmin.php in Contact Form 7 Integrations plugin 1.0 through 1.3.10 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) uE or (2) uC parameter. | 4.3 |