cleantalk
Vulnerabilities and Security Researches

Quick Contact Form, CVE-2023-23885

CVE, Research URL

CVE-2023-23885

Home page URL

Security reports for Quick Contact Form

Application

Quick Contact Form

Published on
Apr 07, 2023
Research Description
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versions.
Affected versions
Min -, max 8.0.4.
Status
vulnerable
Previous vulnerability researches
Quick Contact Form (CVE-2022-4974) , Nov 14, 2024
Quick Contact Form (7e32520d86675f60cdeac530f6e120485d98fb69) , Jun 06, 2024
Quick Contact Form (CVE-2023-23885) , Jun 06, 2024
Quick Contact Form (CVE-2022-47608) , Jun 06, 2024
Quick Contact Form (CVE-2025-48245) , May 27, 2025
New vulnerability
WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce (CVE-2025-48125) , May 31, 2025
Minimal Share Buttons (CVE-2025-5259) , May 30, 2025
LA-Studio Element Kit for Elementor (CVE-2025-4943) , May 30, 2025
LA-Studio Element Kit for Elementor (CVE-2025-4944) , May 30, 2025
Essential Real Estate (CVE-2025-48126) , May 30, 2025