Known Vulnerabilities
CVE-2023-49766
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themefic Ultimate Addons for Contact Form 7 allows Stored XSS.This issue affects Ultimate Addons for Contact Form 7: from n/a through 3.2.0.
HIGH
CVSS 7.1
Published Dec 14, 2023
CVE-2023-30493
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Themefic Ultimate Addons for Contact Form 7 plugin <= 3.2.0 versions.
HIGH
CVSS 7.1
Published Sep 27, 2023