Vulnerabilities (CVE)

Filtered by vendor Video-lead-form Subscribe
Filtered by product Uk-cookie
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-6312 2 Video-lead-form, Wordpress 2 Uk-cookie, Wordpress 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Video Lead Form plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the errMsg parameter in a video-lead-form action to wp-admin/admin.php.