EIP-2026-113650
PRE-CVEWordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)
Title source: legacyDescription
WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)
Exploits (1)
exploitdb
WORKING POC
by Mohammed Aadhil Ashfaq · textwebappsphp
https://www.exploit-db.com/exploits/50524
Details
Status
pre_cve
Tracked Since
Feb 18, 2026