Vulnerabilities > Fluentforms > Contact Form > 5.1.5

DATE CVE VULNERABILITY TITLE RISK
2024-03-13 CVE-2023-6957 Cross-site Scripting vulnerability in Fluentforms Contact Form
The Fluent Forms plugin for WordPress by Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 5.1.9 due to insufficient input sanitization and output escaping.
network
low complexity
fluentforms CWE-79
5.4
5.4
2024-01-27 CVE-2024-0618 Cross-site Scripting vulnerability in Fluentforms Contact Form
The Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via imported form titles in all versions up to, and including, 5.1.5 due to insufficient input sanitization and output escaping.
network
low complexity
fluentforms CWE-79
4.8
4.8