Vulnerabilities > Monsterinsights > Userfeedback > 1.0.9

DATE CVE VULNERABILITY TITLE RISK
2024-02-22 CVE-2024-0903 Cross-site Scripting vulnerability in Monsterinsights Userfeedback
The User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'page_submitted' 'link' value in all versions up to, and including, 1.0.13 due to insufficient input sanitization and output escaping.
network
low complexity
monsterinsights CWE-79
6.1
6.1
2023-10-27 CVE-2023-46153 Cross-site Scripting vulnerability in Monsterinsights Userfeedback
Unauth.
network
low complexity
monsterinsights CWE-79
6.1
6.1