CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-8594

The Ninja Forms plugin 3.4.22 for WordPress has Multiple Stored XSS vulnerabilities via ninja_forms[recaptcha_site_key], ninja_forms[recaptcha_secret_key], ninja_forms[recaptcha_lang], or ninja_forms[date_format].

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.0%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://spider-security.co.uk/blog-cve-cve-2020-8594
https://wordpress.org/plugins/ninja-forms/#developers
https://wpvulndb.com/vulnerabilities/10070
https://spider-security.co.uk/blog-cve-cve-2020-8594
https://wordpress.org/plugins/ninja-forms/#developers
https://wpvulndb.com/vulnerabilities/10070

Products affected by CVE-2020-8594

Ninjaforms » Ninja Forms » Version: 3.4.22

cpe:2.3:a:ninjaforms:ninja_forms:3.4.22

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8594

Products

Pricing

Contact Us