The Form Maker by 10Web plugin for WordPress has a security vulnerability which allows attackers to inject malicious code into pages. This can occur if a user is tricked into clicking on a link or taking some other kind of action. This vulnerability can be found in versions up to, and including, 1.15.18 as it does not adequately sanitize inputs or escape outputs.