CVE-2017-1000033

Wordpress Plugin Vospari Forms version < 1.4 is vulnerable to a reflected cross site scripting in the form submission resulting in javascript code execution in the context on the current user. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt