Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 350 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-6133 Forminator <= 1.27.0 - Authenticated (Administrator+) Arbitrary File Upload wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 6.6 2023-11-15 06:40:46 Deep Dive
CVE-2023-5741 POWR <= 2.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode powrCustom Form Builder, Contact Forms, Payment Forms, Surveys, Polls Medium 6.4 2023-11-13 07:31:16 Deep Dive
CVE-2023-23796 WordPress Form Builder Plugin <= 1.9.9.0 is vulnerable to CSV Injection MuneebForm Builder | Create Responsive Contact Forms 超危 -2023-11-07 16:01:38 Deep Dive
CVE-2023-35911 WordPress Contact Form Generator Plugin <= 2.6.0 is vulnerable to SQL Injection Creative SolutionsContact Form Generator : Creative form builder for WordPress 超危 -2023-11-06 08:44:51 Deep Dive
CVE-2023-35910 WordPress Quasar form Plugin <= 6.0 is vulnerable to SQL Injection Nucleus_geniusQuasar form free – Contact Form Builder for WordPress 高危 -2023-11-03 23:11:33 Deep Dive
CVE-2023-24410 WordPress FluentForm Plugin <= 4.3.25 is vulnerable to SQL Injection Contact Form - WPManageNinja LLCContact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms 超危 -2023-10-31 14:25:56 Deep Dive
CVE-2023-46075 WordPress Contact Form Builder, Contact Widget Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS) wpdevartContact Form Builder, Contact Widget High 7.1 2023-10-26 12:02:17 Deep Dive
CVE-2023-45756 WordPress ApplyOnline – Application Form Builder and Manager Plugin <= 2.5.2 is vulnerable to Cross Site Scripting (XSS) Spider TeamsApplyOnline – Application Form Builder and Manager High 7.1 2023-10-24 11:40:50 Deep Dive
CVE-2023-4961 Poptin <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode poptinPoptin – Exit Pop Ups & Email Popups Medium 6.4 2023-10-20 07:29:22 Deep Dive
CVE-2023-45071 WordPress Form Maker by 10Web Plugin <= 1.15.18 is vulnerable to Cross Site Scripting (XSS) 10Web Form Builder TeamForm Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder High 7.1 2023-10-18 12:38:56 Deep Dive
CVE-2023-45070 WordPress Form Maker by 10Web Plugin <= 1.15.18 is vulnerable to Cross Site Scripting (XSS) 10Web Form Builder TeamForm Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder High 7.1 2023-10-18 12:34:30 Deep Dive
CVE-2023-4950 Funnelforms Free < 3.4 Unauthenticated Stored Cross-Site Scripting UnknownInteractive Contact Form and Multi Step Form Builder with Drag & Drop Editor 中危 -2023-10-16 19:38:58 Deep Dive
CVE-2023-44474 WordPress Tiger Forms Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS) MD Jakir HosenTiger Forms – Drag and Drop Form Builder High 7.1 2023-10-02 08:53:04 Deep Dive
CVE-2023-5125 Contact Form by FormGet <= 5.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode pankajagarwalContact Form by FormGet – Best Form Builder Plugin for WordPress Medium 6.4 2023-09-23 04:29:41 Deep Dive
CVE-2023-0689 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_first_name' shortcode roxnorMetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor Medium 4.3 2023-08-31 05:33:06 Deep Dive
CVE-2023-4596 Forminator <= 1.24.6 - Unauthenticated Arbitrary File Upload wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Critical 9.8 2023-08-30 01:45:37 Deep Dive
CVE-2023-3645 Contact Form Builder by Bit Form < 2.2.0 - Admin+ Stored XSS UnknownContact Form Builder by Bit Form 中危 -2023-08-14 19:10:17 Deep Dive
CVE-2023-2517 Metform Elementor Contact Form Builder <= 3.3.2 - Cross-Site Request Forgery via permalink_setup roxnorMetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor Medium 5.4 2023-07-12 04:38:50 Deep Dive
CVE-2021-4417 Forminator – Contact Form, Payment Form & Custom Form Builder <= 1.13.4 - Cross-Site Request Forgery Bypass wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 5.4 2023-07-12 03:40:46 Deep Dive
CVE-2023-23795 WordPress Form Builder Plugin <= 1.9.9.0 is vulnerable to Cross Site Request Forgery (CSRF) MuneebForm Builder High 7.1 2023-06-22 11:43:05 Deep Dive