cleantalk
Vulnerabilities and Security Researches

Quick Contact Form, CVE-2025-48245

CVE, Research URL

CVE-2025-48245

Home page URL

Security reports for Quick Contact Form

Application

Quick Contact Form

Published on
May 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in fullworks Quick Contact Form allows Reflected XSS. This issue affects Quick Contact Form : from n/a through 8.2.1.
Affected versions
Min -, max 8.2.1.
Status
vulnerable
Previous vulnerability researches
1-Click Backup & Restore Database (CVE-2025-32246) , Apr 06, 2025
New vulnerability
WP Statistics , May 27, 2025
Hostinger , May 27, 2025
BackWPup – WordPress Backup Plugin , May 27, 2025
Quick Contact Form (CVE-2025-48245) , May 27, 2025
Affiliate Sales in Google Analytics and other tools (CVE-2024-12561) , May 27, 2025