Attackers with malicious intent can use the Contact Bank plugin before version 2.0.20 for WordPress websites to insert damaging web scripts or HTML code into the Label field. This could harm the website or expose visitors to the website to malicious content. It is important to update the plugin to version 2.0.20 or later to avoid this vulnerability.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
