Malek Althubiany

Name of the Vulnerable Software and Affected Versions: Contact Form, Survey, Quiz & Popup Form Builder versions prior to 1.7.1 Description: The issue concerns the WordPress plugin Contact Form, Survey, Quiz & Popup Form Builder, where it fails to properly sanitise and escape certain parameters when displaying them on a page. This could potentially allow unauthenticated users to perform Cross-Site Scripting attacks. Recommendations: For versions prior to 1.7.1, update to version 1.7.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** The Interactive Contact Form and Multi Step Form Builder WordPress plugin versions prior to 3.4 **Description** The issue is related to the lack of sanitization and escaping of some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks. **Recommendations** For versions prior to 3.4, update to version 3.4 or later to resolve the issue.