Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities - Vulnerability Database
WP Plugin Ultimate Form Builder Lite

WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities

Medium
Reference: No Reference
Title: WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities
Overview:

WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite is prone to multiple vulnerabilities including cross-site scripting and SQL injection vulnerabilities. Exploiting these issues could allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site allowing the attacker to steal cookie-based authentication credentials or to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite version 1.3.7 is vulnerable prior versions may also be affected.