Medium severity5.4NVD Advisory· Published May 15, 2025· Updated Jun 17, 2026
CVE-2024-10504
CVE-2024-10504
Description
The Contact Form, Survey, Quiz & Popup Form Builder WordPress plugin before 1.7.1 does not sanitise and escape some parameters when outputting them in the page, which could allow unauthenticated users to perform Cross-Site Scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.7.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/9a22df11-0e24-4248-a8f3-da8f23ccb313/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.