Vulnerabilities > Reputeinfosystems > Contact Form Survey Popup Form Plugin FOR Wordpress Arforms Form Builder > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-06	CVE-2021-24718	Cross-site Scripting vulnerability in Reputeinfosystems Contact Form, Survey & Popup Form Plugin for Wordpress - Arforms Form Builder The Contact Form, Survey & Popup Form Plugin for WordPress plugin before 1.5 does not properly sanitize some of its settings allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed network reputeinfosystems CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.