| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-50846 | WordPress RegistrationMagic Plugin <= 5.2.4.5 is vulnerable to SQL Injection | RegistrationMagic | RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login | High | 7.6 | 2023-12-28 18:19:26 | Deep Dive |
| CVE-2023-50836 | WordPress HTML Forms Plugin <= 1.3.28 is vulnerable to Cross Site Scripting (XSS) | ibericode | HTML Forms | Medium | 5.9 | 2023-12-28 10:19:57 | Deep Dive |
| CVE-2023-5980 | BSK Forms Blacklist < 3.7 - Admin+ Stored Cross-Site Scripting | Unknown | BSK Forms Blacklist | - | - | 2023-12-26 18:33:13 | Deep Dive |
| CVE-2023-30872 | WordPress BSK Forms Blacklist Plugin <= 3.6.2 is vulnerable to SQL Injection | BannerSky | BSK Forms Blacklist | High | 7.6 | 2023-12-20 17:03:42 | Deep Dive |
| CVE-2023-28782 | WordPress Gravity Forms Plugin <= 2.7.3 is vulnerable to PHP Object Injection | Rocketgenius Inc. | Gravity Forms | High | 8.3 | 2023-12-20 14:46:58 | Deep Dive |
| CVE-2023-37982 | WordPress Integration for Contact Form 7 and Salesforce Plugin <= 1.3.3 is vulnerable to Open Redirection | CRM Perks | Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms | Medium | 4.7 | 2023-12-19 20:07:31 | Deep Dive |
| CVE-2023-49170 | WordPress Forms by CaptainForm Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS) | captainform | Forms by CaptainForm – Form Builder for WordPress | High | 7.1 | 2023-12-15 14:10:52 | Deep Dive |
| CVE-2023-49841 | WordPress Optin Forms Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS) | FancyThemes | Optin Forms – Simple List Building Plugin for WordPress | Medium | 5.9 | 2023-12-14 15:56:48 | Deep Dive |
| CVE-2023-47779 | WordPress Integration for Contact Form 7 and Constant Contact Plugin <= 1.1.4 is vulnerable to Open Redirection | CRM Perks | Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms | Medium | 4.7 | 2023-12-07 12:11:33 | Deep Dive |
| CVE-2023-35909 | WordPress Ninja Forms Plugin <= 3.6.25 is vulnerable to Denial of Service Attack | Saturday Drive | Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress | Medium | 5.3 | 2023-12-07 11:15:27 | Deep Dive |
| CVE-2023-48278 | WordPress WP Forms Puzzle Captcha Plugin <= 4.1 is vulnerable to Cross Site Request Forgery (CSRF) leading to XSS | Nitin Rathod | WP Forms Puzzle Captcha | High | 7.1 | 2023-11-30 16:08:50 | Deep Dive |
| CVE-2023-47645 | WordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF) | RegistrationMagic | RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login | Medium | 4.3 | 2023-11-30 13:34:47 | Deep Dive |
| CVE-2023-47816 | WordPress Charitable Plugin <= 1.7.0.13 is vulnerable to Cross Site Scripting (XSS) | Charitable Donations & Fundraising Team | Donation Forms by Charitable | Medium | 6.5 | 2023-11-22 22:57:25 | Deep Dive |
| CVE-2023-47545 | WordPress Forms for Mailchimp by Optin Cat Plugin <= 2.5.4 is vulnerable to Cross Site Scripting (XSS) | Fatcat Apps | Forms for Mailchimp by Optin Cat – Grow Your MailChimp List | Medium | 5.9 | 2023-11-14 20:55:35 | Deep Dive |
| CVE-2023-47669 | WordPress Profile Builder Plugin <= 3.10.3 is vulnerable to Cross Site Request Forgery (CSRF) | Cozmoslabs | User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | Medium | 5.4 | 2023-11-13 00:55:28 | Deep Dive |
| CVE-2023-47230 | WordPress Contact Forms by Cimatti Plugin <= 1.6.0 is vulnerable to Cross Site Request Forgery (CSRF) | Cimatti Consulting | WordPress Contact Forms by Cimatti | Medium | 5.4 | 2023-11-13 00:07:46 | Deep Dive |
| CVE-2023-23796 | WordPress Form Builder Plugin <= 1.9.9.0 is vulnerable to CSV Injection | Muneeb | Form Builder | Create Responsive Contact Forms | 超危 | - | 2023-11-07 16:01:38 | Deep Dive |
| CVE-2023-5601 | WooCommerce Ninja Forms Product Add-ons < 1.7.1 - Unauthenticated Arbitrary File Upload | Unknown | WooCommerce Ninja Forms Product Add-ons | 高危 | - | 2023-11-06 20:41:49 | Deep Dive |
| CVE-2023-5530 | Ninja Forms < 3.6.34 - Admin+ Stored XSS | Unknown | Ninja Forms Contact Form | 中危 | - | 2023-11-06 20:41:41 | Deep Dive |
| CVE-2023-24410 | WordPress FluentForm Plugin <= 4.3.25 is vulnerable to SQL Injection | Contact Form - WPManageNinja LLC | Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms | 超危 | - | 2023-10-31 14:25:56 | Deep Dive |