wp-premium/gravityforms Security Advisories for 2.4.8 (4)
-
[MEDIUM] Gravity Forms stored Cross-Site Scripting (XSS) vulnerability
PKSA-8nk1-3ybj-8fpj CVE-2020-27850 GHSA-wmh7-782f-xfw5
Affected version: >=2.4,<2.4.21
Reported by:
GitHub -
[MEDIUM] Gravity Forms stored HTML injection vulnerability
PKSA-9n68-jrmh-rzzt CVE-2020-27851 GHSA-fcj2-rxqc-294c
Affected version: <2.4.21
Reported by:
GitHub -
[MEDIUM] Gravity Forms stored Cross-Site Scripting (XSS) vulnerability in the survey feature
PKSA-1n4y-xxqf-3x82 CVE-2020-27852 GHSA-pjv5-v9gv-3679
Affected version: >=2.4,<2.4.21
Reported by:
GitHub -
[HIGH] Gravity Forms plugin leak hashed passwords
PKSA-6tp5-kwxs-7yz7 CVE-2020-13764 GHSA-m983-q76g-cwpq
Affected version: <2.4.9
Reported by:
GitHub