CVE-2020-8436

CVE-2020-8436

EPSS 1.4%

XSS was discovered in the RegistrationMagic plugin 4.6.0.0 for WordPress via the rm_form_id, rm_tr, or form_name parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://Spider-security.co.uk https://spider-security.co.uk/blog-cve-2020-8436 https://wordpress.org/plugins/custom-registration-form-builder-with-submission-manager/#developers