Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in ConvertCalculator for WordPress 1.1.1

  • Severity: medium-risk
  • Status: Fixed
  • Publication: November 15, 2024

The ConvertCalculator for WordPress plugin has a security issue known as Stored Cross-Site Scripting. This happens when an attacker can add harmful code to certain parts of the plugin. This can cause problems for users who access those pages. This vulnerability is present in all versions of the plugin up to and including version 1.1.1. It can be exploited by attackers with Contributor-level access or higher.

Detected in:

ConvertCalculator | Create powerful calculators, quote forms, lead funnels, and more without code fixed vulnerable versions:
ConvertCalculator | Create powerful calculators, quote forms, lead funnels, and more without code right in WordPress. fixed vulnerable versions:
ConvertCalculator for WordPress fixed vulnerable versions: >= * <= 1.1.1
ConvertCalculator: Build Cost, Price, Quotation, ROI Interactive Calculators fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.