Contact Form Plugin, CVE-2024-32147

CVE, Research URL: CVE-2024-32147
Home page URL: Security reports for Contact Form Plugin
Application: Contact Form Plugin
Published on: Apr 15, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Form Plugin Team - GhozyLab Easy Contact Form Lite allows Stored XSS.This issue affects Easy Contact Form Lite : from n/a through 1.1.23.
Affected versions: max 1.1.25.
Status: vulnerable