Contact Form Entries

Unauthenticated Stored CrossSite Scripting vulnerability <= 1.3.8

Authenticated(Contributor+) Stored CrossSite Scripting via shortcode vulnerability <= 1.3.3

Authenticated (Administrator+) Arbitrary File Upload vulnerability <= 1.3.2

Cross Site Scripting (XSS) vulnerability <= 1.3.0

Auth. SQL Injection (SQLi) vulnerability <= 1.3.0