Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 623 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-26019 WordPress Plugin Ninja Forms Contact Form 安全漏洞 Saturday DriveNinja Forms--2024-04-11 02:29:27 Deep Dive
CVE-2024-29220 WordPress plugin Ninja Forms 安全漏洞 Saturday DriveNinja Forms--2024-04-11 02:29:11 Deep Dive
CVE-2024-1812 Everest Forms <= 2.0.7 - Unauthenticated Server-Side Request Forgery via font_url wpeverestEverest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder High 7.2 2024-04-09 18:59:24 Deep Dive
CVE-2024-1991 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 5.3.0.0 - Authenticated (Subscriber+) Privilege Escalation metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login High 8.8 2024-04-09 18:58:59 Deep Dive
CVE-2024-1990 RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login <= 5.3.1.0 - Authenticated (Contributor+) SQL Injection via Shortcode metagaussRegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login High 8.8 2024-04-09 18:58:52 Deep Dive
CVE-2024-31257 WordPress Formsite plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability FormsiteFormsite | Embed online forms to collect orders, registrations, leads, and surveys Medium 6.5 2024-04-07 17:45:57 Deep Dive
CVE-2024-30549 WordPress Contact Forms by Cimatti plugin <= 1.8.0 - Cross Site Scripting (XSS) vulnerability cimattiContact Forms by Cimatti--2024-03-31 19:59:15 Deep Dive
CVE-2024-30489 WordPress WP Cost Estimation & Payment Forms Builder plugin <= 10.1.75 - SQL Injection vulnerability loopusWP Cost Estimation & Payment Forms Builder High 8.5 2024-03-31 18:18:31 Deep Dive
CVE-2024-30446 WordPress CRM Perks Forms plugin <= 1.1.4 - Cross Site Scripting (XSS) vulnerability CRM PerksCRM Perks Forms Medium 6.5 2024-03-29 16:54:02 Deep Dive
CVE-2024-30499 WordPress CRM Perks Forms plugin <= 1.1.4 - SQL Injection vulnerability CRM PerksCRM Perks Forms High 8.5 2024-03-29 14:01:37 Deep Dive
CVE-2024-30498 WordPress CRM Perks Forms plugin <= 1.1.4 - Unauthenticated SQL Injection vulnerability CRM PerksCRM Perks Forms Critical 9.3 2024-03-29 14:00:33 Deep Dive
CVE-2024-2108 Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress <= 3.8.0 - Authenticated (Author+) Stored Cross-Site Scripting kstoverNinja Forms – The Contact Form Builder That Grows With You Medium 4.6 2024-03-29 06:44:01 Deep Dive
CVE-2024-2113 Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress <= 3.8.0 - Cross-Site Request Forgery to Publicly Accessible Form Submission Export kstoverNinja Forms – The Contact Form Builder That Grows With You Medium 4.3 2024-03-29 06:43:58 Deep Dive
CVE-2024-29793 WordPress MailChimp Forms by MailMunch plugin <= 3.2.2 - Cross Site Scripting (XSS) vulnerability MailMunchMailChimp Forms by MailMunch Medium 6.5 2024-03-27 12:42:06 Deep Dive
CVE-2024-29117 WordPress Contact Forms by Cimatti plugin <= 1.7.0 - Unauthenticated Stored Cross Site Scripting (XSS) vulnerability Cimatti ConsultingContact Forms by Cimatti High 7.1 2024-03-19 14:52:08 Deep Dive
CVE-2024-25593 WordPress NEX-Forms plugin <= 8.5.5 - Cross Site Scripting (XSS) vulnerability BasixNEX-Forms – Ultimate Form Builder Medium 6.5 2024-03-15 13:57:46 Deep Dive
CVE-2024-25099 WordPress Paytium: Mollie payment forms & donations Plugin <= 4.4.2 is vulnerable to Cross Site Scripting (XSS) David de BoerPaytium: Mollie payment forms & donations Medium 6.5 2024-03-13 16:02:21 Deep Dive
CVE-2023-6957 Fluent Forms <= 5.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting techjewelFluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder Medium 4.9 2024-03-13 15:27:25 Deep Dive
CVE-2024-2030 Database for Contact Form 7, WPforms, Elementor forms <= 1.3.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode crmperksDatabase for Contact Form 7, WPforms, Elementor forms Medium 6.4 2024-03-13 15:27:14 Deep Dive
CVE-2024-1158 Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.7 - Missing Authorization themekraftPost Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) Medium 4.3 2024-03-13 15:26:35 Deep Dive