CVE-2021-40921

Cross-site scripting (XSS) vulnerability in _contactform.inc.php in Detector 0.8.5 and below version allows remote attackers to inject arbitrary web script or HTML via the cid parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt