On January 4, 2023, independent security researcher Mohammed Chemouri reached out to the Wordfence Vulnerability Disclosure program to responsibly disclose and request a CVE ID for a vulnerability in Metform Elementor Contact Form Builder, a WordPress plugin with over 100,000 installations. The vulnerability, an unauthenticated stored cross-site scripting vulnerability, is arguably the most dangerous variant …Read More
The post High-Severity XSS Vulnerability in Metform Elementor Contact Form Builder appeared first on Wordfence.
Be sure to read the original article from Blog – Wordfence here: Read More