I received a notification that two XSS security risks persist in Easy Forms for Mailchimp 6.8.9:
Security risk: xss. Data from an attacker could be interpreted as code by site visitors’ web browsers. The ability to run code in another site visitors’ browser can be abused to steal information, or modify site configuration.
Severity: medium
Fixed in: no fix yet
Security risk: xss. Data from an attacker could be interpreted as code by site visitors’ web browsers. The ability to run code in another site visitors’ browser can be abused to steal information, or modify site configuration.
Severity: low
Fixed in: no fix yet
Please advise.
