WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Unspecified Vulnerability (2.9.24)

Description

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress version 2.9.24 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 2.9.25 or latest

References

https://wordpress.org/plugins/ninja-forms/changelog/

Related Vulnerabilities

WordPress Plugin WP Activity Log Cross-Site Scripting (2.4.3)

Joomla! Core 3.0.x Security Bypass (3.0.0 - 3.0.3)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1000362)

Atlassian Confluence Improper Input Validation Vulnerability (CVE-2018-13389)

WordPress Plugin Forms:3rd-Party Inject Results Cross-Site Scripting (0.2)

Severity

High

Tags

Missing Update