Ninjaforma CVE - CVE Search - CVE Details

Filtered by vendor Ninjaforma Subscribe

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-19287	1 Ninjaforma	1 Ninja Forms	2018-12-14	4.3 MEDIUM	6.1 MEDIUM
XSS in the Ninja Forms plugin before 3.3.18 for WordPress allows Remote Attackers to execute JavaScript via the includes/Admin/Menus/Submissions.php (aka submissions page) begin_date, end_date, or form_id parameter.

Vulnerabilities (CVE)