CVE-2023-51695
- Source
- https://cve.org/CVERecord?id=CVE-2023-51695
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-51695.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-51695
- Published
- 2024-02-01T11:07:21.238Z
- Modified
- 2026-05-09T03:52:23.916008Z
- Severity
-
- 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L CVSS Calculator
- Summary
- WordPress Everest Forms Plugin <= 2.0.4.1 is vulnerable to Cross Site Scripting (XSS)
- Details
-
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPEverest Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease! allows Stored XSS.This issue affects Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease!: from n/a through 2.0.4.1.
- Database specific
{ "cna_assigner": "Patchstack", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/51xxx/CVE-2023-51695.json", "unresolved_ranges": [ { "source": "AFFECTED_FIELD", "extracted_events": [ { "last_affected": "2.0.4.1" } ] }, { "source": "DESCRIPTION", "extracted_events": [ { "fixed": "2.0.4.1" } ] } ], "cwe_ids": [ "CWE-79" ] }- References
-
- https://wordpress.org/plugins
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/51xxx/CVE-2023-51695.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-51695
- https://patchstack.com/database/vulnerability/everest-forms/wordpress-everest-forms-plugin-2-0-4-1-cross-site-scripting-xss-vulnerability?_s_id=cve
Affected packages
Git / github.com/wpeverest/everest-forms
Affected ranges
- Type
- GIT
- Repo
- https://github.com/wpeverest/everest-forms
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "cpe": "cpe:2.3:a:wpeverest:everest_forms:*:*:*:*:*:wordpress:*:*", "extracted_events": [ { "introduced": "0" }, { "last_affected": "2.0.4.1" } ] }
Affected versions
1.*
1.0.0
1.0.1
1.0.2
1.1.0
1.1.0-rc.1
1.1.3
1.1.4
1.2.0
1.2.0-rc.1
1.3.0
1.3.2
1.3.4
1.4.0
1.4.0-beta
1.4.0-beta2
1.4.0-beta3
1.4.0-beta4
1.4.0-beta5
1.4.0-beta6
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.4.6
1.4.8
1.4.9
1.5.0
1.5.1
1.5.10
1.5.2
1.5.4
1.5.5
1.5.6
1.5.7
1.5.8
1.5.9
1.6.0
1.6.1
1.6.2
1.6.3
1.6.4
1.6.5
1.6.6
1.6.6.1
1.6.7
1.7.0
1.7.0.1
1.7.0.2
1.7.0.3
1.7.1
1.7.2
1.7.2.1
1.7.2.2
1.7.3
1.7.4
1.7.5
1.7.5.1
1.7.5.2
1.7.6
1.7.7
1.7.7.1
1.7.7.2
1.7.8
1.7.9
1.8.0
1.8.0.1
1.8.1
1.8.2
1.8.2.1
1.8.2.2
1.8.2.3
1.8.3
1.8.4
1.8.5
1.8.6
1.8.7
1.8.8
1.8.9
1.9.0
1.9.0.1
1.9.1
1.9.2
1.9.3
1.9.4
1.9.4.1
1.9.5
1.9.6
1.9.7
1.9.8
1.9.9
2.*
2.0.0
2.0.0.1
2.0.1
2.0.3
2.0.3.1
2.0.4
2.0.4.1
v1.*
v1.4.0-beta