17Oca
CVE-2024-13378 | GravityForms Plugin 2.9.0.1/2.9.1.3 on WordPress style_settings cross site scripting
A vulnerability classified as problematic has been found in GravityForms Plugin 2.9.0.1/2.9.1.3 on WordPress. Affected is an unknown function. The manipulation of the argument style_settings leads to cross site scripting. This vulnerability is traded as CVE-2024-13378. It is possible to launch the attack remotely. There is no exploit available.