2025-09-05 13:45:21
Patchstack
PUBLISHED
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Habibur Rahman Comment Form WP – Customize Default Comment Form comment-form-wp allows Stored XSS.This issue affects Comment Form WP – Customize Default Comment Form: from n/a through <= 2.0.1.