CVE-2016-10908

CVE-2016-10908

The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS.

Source: CVE-2016-10908