WordPress.org

Ready to get started?Download WordPress

Forums

Visual Form Builder
[resolved] Secutiry Issue with VFB (2 posts)

  1. vasudev_bhat
    Member
    Posted 1 year ago #

    Hi,
    I have found a security issue with your plugin.

    i can enter a script into the name field or comment field and execute it.

    like this
    %3Cscript%3Ealert%28%22test%22%29%3B%3C%2Fscript%3E

    how can you stop this??

    http://wordpress.org/extend/plugins/visual-form-builder/

  2. Matthew Muro
    Visual Form Builder Pro
    Plugin Author

    Posted 1 year ago #

    The data is escaped before it's inserted into the database.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.