Unit tag in setup meta data isn’t properly escaped and can lead to XSS.

This vulnerability affects the following application versions:

  • Contact Form 7 5.2
  • Contact Form 7 5.2.1
  • Contact Form 7 5.2.2
  • Contact Form 7 5.3
  • Contact Form 7 5.3.1
  • Contact Form 7 5.3.2
  • Contact Form 7 5.4
  • Contact Form 7 5.4.1
  • Contact Form 7 5.4.2

Skriv et svar

Din e-mailadresse vil ikke blive publiceret. Krævede felter er markeret med *