Vulnerability Details CVE-2017-20192
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries like 'after_html' in versions before 2.05.03 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.295
EPSS Ranking 96.5%
CVSS Severity
CVSS v3 Score 8.3
References
Products affected by CVE-2017-20192
-
cpe:2.3:a:strategy11:formidable_form_builder:-
-
cpe:2.3:a:strategy11:formidable_form_builder:1.04.05
-
cpe:2.3:a:strategy11:formidable_form_builder:1.04.06
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.0
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.01
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.02
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.03
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.04
-
cpe:2.3:a:strategy11:formidable_form_builder:1.05.05
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.01
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.02
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.03
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.04
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.05
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.06
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.07
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.08
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.09
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.10
-
cpe:2.3:a:strategy11:formidable_form_builder:1.06.11
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.0
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.01
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.02
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.03
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.04
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.05
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.06
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.08
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.09
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.10
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.11
-
cpe:2.3:a:strategy11:formidable_form_builder:1.07.12
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.02
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.03
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.04
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.05
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.06
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.07
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.08
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.09
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.10
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.11
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.12
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.13
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.14
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.15
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.16
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.17
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.18
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.19
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.20
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.21
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.22
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.23
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.24
-
cpe:2.3:a:strategy11:formidable_form_builder:2.0.25
-
cpe:2.3:a:strategy11:formidable_form_builder:2.01.0
-
cpe:2.3:a:strategy11:formidable_form_builder:2.01.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.01.02
-
cpe:2.3:a:strategy11:formidable_form_builder:2.01.03
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.02
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.03
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.04
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.05
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.06
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.07
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.08
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.09
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.10
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.11
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.12
-
cpe:2.3:a:strategy11:formidable_form_builder:2.02.13
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.02
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.03
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.04
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.05
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.06
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.07
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.08
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.09
-
cpe:2.3:a:strategy11:formidable_form_builder:2.03.10
-
cpe:2.3:a:strategy11:formidable_form_builder:2.04
-
cpe:2.3:a:strategy11:formidable_form_builder:2.04.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.05
-
cpe:2.3:a:strategy11:formidable_form_builder:2.05.01
-
cpe:2.3:a:strategy11:formidable_form_builder:2.05.02