WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Smart Forms 2.1.0 - Cross-Site Scripting (XSS)

Description

The Smart Forms – when you need more than just a contact form WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

smart-forms
Fixed in version 2.1.1

References

CVE
CVE-2014-8803
URL
https://security.szurek.pl/wordpress-smart-forms-210-xss.html

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Kacper Szurek

Submitter

Kacper Szurek

Submitter website
http://security.szurek.pl/
Submitter twitter
kacperszurek
Verified

No

WPVDB ID
eb588203-e4ad-46b6-9dac-901ddc3c21be

Timeline

Publicly Published

2014-10-13 (about 8 years ago)

Added

2014-11-24 (about 8 years ago)

Last Updated

2019-10-21 (about 3 years ago)

Our Other Services

WPScan WordPress Security Plugin