- Lana Codes
- Common Vulnerabilities
Flexible Captcha by Jeff Sterup <= 4.1 - Contributor+ Stored XSS
LANACOMMONVDB ID: 6dff970b-17ec-4562-bf4e-39b0eec01e96
The plugin does not sanitize and escapes some parameters, which could allow users with a role as low as contributor to perform Cross-Site Scripting (XSS) attacks.
You must be log in to view vulnerability details.
Or register a new account.