Vulnerabilities (CVE)

Filtered by vendor Contactus Subscribe
Filtered by product Contact Form 7 Integrations
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-6445 1 Contactus 1 Contact Form 7 Integrations 2024-02-04 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in includes/toAdmin.php in Contact Form 7 Integrations plugin 1.0 through 1.3.10 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) uE or (2) uC parameter.