CVEs-PoC/2018/CVE-2018-1002007.md

CVE-2018-1002007

Description

There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.

POC

Reference

• https://www.exploit-db.com/exploits/45434/

Github

No PoCs found on GitHub currently.