The code generated by PHP FormMail Generator prior to 17 December 2016 is vulnerable to stored cross-site scripting. In the generated form.lib.php file, upload file types are checked against a…
Link: http://feeds.security-database.com/~r/Last100Alerts/~3/jSMaHyaeTQ4/detail.php