A Forms 1.4.0 - a-forms.php aform_css_file_selector() Function css_file_selection Parameter XSS

Description

The A Forms WordPress plugin was affected by an a-forms.php aform_css_file_selector() Function css_file_selection Parameter XSS security vulnerability.

Affects Plugins

a-forms

Fixed in version 1.4.2✓plugin closed

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Verified

WPVDB ID

43c495d9-a936-404c-8303-6a5ba596d614

Timeline

Publicly Published

2014-08-01 (about 7 years ago)

Added

2014-08-01 (about 7 years ago)

Last Updated

2015-05-15 (about 6 years ago)

Our Other Services

WPScan WordPress Security Plugin