VYPR

OpenPGP Form Encryption

by WordPress

CVEs (1)

  • CVE-2024-3919MedJul 13, 2024
    risk 0.30cvss 4.6epss 0.00

    The OpenPGP Form Encryption for WordPress plugin before 1.5.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored…