GCVE - cpe:2.3:a:jeff_starr:contact_form_x_(wordpress

Approved changes feed: RSS · Atom

cpe:2.3:a:jeff_starr:contact_form_x_(wordpress_plugin):*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Jeff Starr (`4a6cb7e4-15c4-55d4-b2a8-0a67e6a14f7d`)
Product	Contact Form X (Wordpress Plugin) (`c0848187-808e-5153-b753-ea3dc400262b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-25601`	vulnerable	2026-06-08 05:41:46.029267	WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability MEDIUM (4.7) Reflected Cross-Site Scripting (XSS) vulnerability affecting parameter &tab discovered in Contact Form X WordPress plugin (versions <= 2.4). Published: 2022-03-11T17:54:08.234Z Updated: 2026-04-28T16:07:39.081Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/contact-form-x/#developers https://patchstack.com/database/vulnerability/contact-form-x/wordpress-contact-form-x-plugin-2-4-authenticated-reflected-cross-site-scripting-xss-vulnerability https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZQCIZQI267YHVYSFB3CRKNK3F4ASPLK/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7CR6VGITIB2TXXZ6B5QRRWPU5S4BXQPD/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJX6NVXSRN3RX3YUVEJQ4WUTQSDL3DSR/	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.