CVE-2024-7691 Information

Description

The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape some parameters which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators.

Reference

https://wpscan.com/vulnerability/d30a3b95-5d1f-4755-8b61-19946afc51ef/