Medium severity5.4NVD Advisory· Published Dec 20, 2018· Updated Jun 17, 2026
CVE-2018-14846
CVE-2018-14846
Description
The Mondula Multi Step Form plugin before 1.2.8 for WordPress has multiple stored XSS via wp-admin/admin-ajax.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.2.8+ 1 more
- (no CPE)range: <1.2.8
- (no CPE)range: <1.2.8
Patches
Vulnerability mechanics
References
3- ansawaf.blogspot.com/2018/10/cve-2018-14846-multiple-stored-xss-in.htmlnvdExploitThird Party Advisory
- cwatch.comodo.com/blog/website-security/vulnerability-found-in-multiple-stored-xss-form-in-wordpress-version-1-2-5/nvdExploitPatchThird Party Advisory
- wpvulndb.com/vulnerabilities/9186nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.