Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in PDF Generator For Fluent Forms – The Contact Form Plugin 1.1.7

  • Severity: medium-risk
  • Status: Fixed
  • Publication: January 22, 2024

A plugin called PDF Generator for Fluent Forms, which is used for creating contact forms on WordPress websites, has a security vulnerability. This means that it doesn’t properly protect against harmful scripts being inserted into the header, PDF body, and footer content. This could allow attackers to add their own code to a page, which will then run whenever a user visits that page. The severity of this vulnerability depends on the level of access granted by the website administrator, but it could potentially be exploited by anyone from a contributor to the admin.

Detected in:

Fluent Forms PDF Generator fixed vulnerable versions:
PDF Generator For Fluent Forms – The Contact Form Plugin fixed vulnerable versions: >= * <= 1.1.7

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.