Contact Form By Mega Forms – Drag and Drop Form Builder, CVE-2022-40191

CVE, Research URL: CVE-2022-40191
Home page URL: Security reports for Contact Form By Mega Forms – Drag and Drop Form Builder
Application: Contact Form By Mega Forms – Drag and Drop Form Builder
Published on: Sep 09, 2022
Research Description: Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress.
Affected versions: Min -, max 1.1.3.
Status: vulnerable

Contact Form By Mega Forms &#8211; Drag and Drop Form Builder, CVE-2022-40191