| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-4226 | Simple Basic Contact Form < 20221201 - Admin+ Stored XSS | Unknown | Simple Basic Contact Form | 中危 | - | 2022-12-26 12:28:13 | Deep Dive |
| CVE-2022-3634 | Contact Form 7 Database Addon < 1.2.6.5 - CSV Injection | Unknown | Contact Form 7 Database Addon | 超危 | - | 2022-11-21 00:00:00 | Deep Dive |
| CVE-2022-3463 | FluentForm < 4.3.13 - CSV Injection | Unknown | Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms | 超危 | - | 2022-11-07 00:00:00 | Deep Dive |
| CVE-2022-3300 | Form Maker by 10Web < 1.15.6 - Admin+ SQLI | Unknown | Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder | 高危 | - | 2022-10-25 00:00:00 | Deep Dive |
| CVE-2022-3350 | Contact Bank <= 3.0.30 - Admin+ Stored Cross-Site Scripting | Unknown | Contact Bank – Contact Form Builder for WordPress | 中危 | - | 2022-10-25 00:00:00 | Deep Dive |
| CVE-2022-3282 | Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass | Unknown | Drag and Drop Multiple File Upload – Contact Form 7 | 中危 | - | 2022-10-17 00:00:00 | Deep Dive |
| CVE-2021-36913 | Redirection for Contact Form 7 <= 2.4.0 - Unauthenticated Options Change and Content Injection vulnerability | Qube One | Redirection for Contact Form 7 (WordPress plugin) | High | 7.5 | 2022-10-11 17:04:23 | Deep Dive |
| CVE-2022-3070 | Generate PDF using Contact Form 7 < 3.6 - Admin+ Stored Cross-Site Scripting | Unknown | Generate PDF using Contact Form 7 | 中危 | - | 2022-09-26 12:35:40 | Deep Dive |
| CVE-2022-2903 | NinjaForms < 3.6.13 - Admin+ PHP Objection Injection | Unknown | Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress | 高危 | - | 2022-09-26 12:35:34 | Deep Dive |
| CVE-2022-3142 | NEX-Forms < 7.9.7 - Authenticated SQLi | Unknown | NEX-Forms – Ultimate Form Builder – Contact forms and much more | 高危 | - | 2022-09-19 00:00:00 | Deep Dive |
| CVE-2022-40191 | WordPress Contact Form By Mega Forms plugin <= 1.2.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability | Ali Khallad | Contact Form By Mega Forms (WordPress plugin) | Medium | 5.4 | 2022-09-09 14:39:53 | Deep Dive |
| CVE-2022-2116 | Elementor Contact Form DB < 1.8.0 - Reflected Cross-Site Scripting | Unknown | Contact Form DB – Elementor | 中危 | - | 2022-08-15 08:35:51 | Deep Dive |
| CVE-2022-2395 | weForms < 1.6.14 - Admin+ Stored Cross-Site Scripting | Unknown | weForms – Easy Drag & Drop Contact Form Builder For WordPress | 中危 | - | 2022-08-08 13:48:42 | Deep Dive |
| CVE-2022-2187 | Contact Form 7 Captcha < 0.1.2 - Reflected Cross-Site Scripting | Unknown | Contact Form 7 Captcha | 中危 | - | 2022-07-17 10:37:14 | Deep Dive |
| CVE-2022-2144 | Jquery Validation For Contact Form 7 < 5.3 - Arbitrary Options Update via CSRF | Unknown | Jquery Validation For Contact Form 7 | 中危 | - | 2022-07-17 10:36:23 | Deep Dive |
| CVE-2022-0250 | Redirection for Contact Form 7 < 2.5.0 - Reflected Cross-Site Scripting | Unknown | Redirection for Contact Form 7 | 中危 | - | 2022-07-04 13:05:38 | Deep Dive |
| CVE-2021-25066 | Ninja Forms < 3.6.10 - Admin+ Stored Cross-Site Scripting via Import | Unknown | Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress | 中危 | - | 2022-07-04 13:05:27 | Deep Dive |
| CVE-2021-25056 | Ninja Forms < 3.6.10 - Admin+ Stored Cross-Site Scripting | Unknown | Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress | 中危 | - | 2022-07-04 13:05:21 | Deep Dive |
| CVE-2022-1846 | Tiny Contact Form <= 0.7 - Arbitrary Settings Update via CSRF | Unknown | Tiny Contact Form | 中危 | - | 2022-06-27 08:58:03 | Deep Dive |
| CVE-2022-1326 | Form - Contact Form <= 1.2.0 - Admin+ Stored Cross-Site Scripting | Unknown | Form – Contact Form | 中危 | - | 2022-06-27 08:56:33 | Deep Dive |