CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-25063

The Skins for Contact Form 7 WordPress plugin before 2.5.1 does not sanitise and escape the tab parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.7%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://wpscan.com/vulnerability/e2185887-3e53-4089-aa3f-981c944ee0bb
https://wpscan.com/vulnerability/e2185887-3e53-4089-aa3f-981c944ee0bb

Products affected by CVE-2021-25063

Cf7skins » Contact Form 7 Skins » Version: N/A

cpe:2.3:a:cf7skins:contact_form_7_skins:-
Cf7skins » Contact Form 7 Skins » Version: 2.5.0

cpe:2.3:a:cf7skins:contact_form_7_skins:2.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-25063

Products

Pricing

Contact Us