. The VS Contact Form plugin for WordPress may have a security flaw in versions up to 11.5. This flaw could allow an attacker to inject malicious code into web pages. This code can then be executed if the attacker can trick someone into clicking a link. The vulnerability only affects people using older browsers, as newer browsers automatically encode the REQUEST_URI parameter.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
