CVE-2025-5730 Information
Jul 01, 2025
cve
Description
The Contact Form Plugin WordPress plugin before 1.1.29 does not sanitise and escape some of its settings which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks.
Reference
https://wpscan.com/vulnerability/e1e7f423-f981-413c-a99a-e5927fc1cd0c/
Related CNNVD
CNNVD-202506-3733 (Published: 2025-06-30)
Share on: