Vulnerabilities > Wpplugin > Contact Form 7 Redirect Thank YOU Page > 1.0.4

DATE CVE VULNERABILITY TITLE RISK
2024-11-12 CVE-2024-10685 Cross-site Scripting vulnerability in Wpplugin Contact Form 7 Redirect & Thank YOU Page
The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping.
network
low complexity
wpplugin CWE-79
6.1
6.1