Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 38

Clear Filters
Found 1057 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-1129 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via set_starred() webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 5.3 2024-02-01 04:31:55 Deep Dive
CVE-2024-1130 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via set_read() webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 5.3 2024-02-01 04:31:55 Deep Dive
CVE-2024-0907 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via restore_records() webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 5.3 2024-02-01 04:31:54 Deep Dive
CVE-2024-22305 WordPress Contact Form builder with drag & drop - Kali Forms Plugin <= 2.3.36 is vulnerable to Insecure Direct Object References (IDOR) ali FormsContact Form builder with drag & drop for WordPress – Kali Forms High 7.5 2024-01-31 11:49:29 Deep Dive
CVE-2024-1069 Contact Form Entries <= 1.3.2 - Authenticated (Administrator+) Arbitrary File Upload crmperksDatabase for Contact Form 7, WPforms, Elementor forms High 7.2 2024-01-31 02:35:10 Deep Dive
CVE-2024-0618 Fluent Forms <= 5.1.5 - Authenticated(Administrator+) Stored Cross-Site Scripting via imported form title techjewelFluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder Medium 4.4 2024-01-27 05:38:22 Deep Dive
CVE-2024-0667 Form-Maker (twb_form-maker) <= 1.15.21 - Cross-Site Request Forgery to Limited Code Execution via Execute 10webForm Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder Medium 5.4 2024-01-27 03:32:46 Deep Dive
CVE-2024-22134 WordPress Contact Form 7 Extension For Mailchimp Plugin <= 0.5.70 is vulnerable to Server Side Request Forgery (SSRF) Renzo JohnsonContact Form 7 Extension For Mailchimp Medium 4.9 2024-01-24 11:39:10 Deep Dive
CVE-2022-45083 WordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 6.6 2024-01-19 14:37:19 Deep Dive
CVE-2022-41790 WordPress WP Time Slots Booking Form Plugin <= 1.1.76 is vulnerable to Broken Access Control CodePeopleWP Time Slots Booking Form Medium 4.3 2024-01-17 18:13:45 Deep Dive
CVE-2024-0239 Contact Form 7 Connector < 1.2.3 - Reflected XSS UnknownContact Form 7 Connector 中危 -2024-01-16 15:57:04 Deep Dive
CVE-2023-0389 Calculated Fields Form < 1.1.151 - Admin+ Stored Cross-Site Scripting via Dropdown Fields UnknownCalculated Fields Form--2024-01-16 15:56:08 Deep Dive
CVE-2023-2655 Contact Form by WD <= 1.13.23 - Admin+ SQLi UnknownContact Form by WD 中危 -2024-01-16 15:55:23 Deep Dive
CVE-2022-3604 Contact Form Entries < 1.3.0 - CSV Injection UnknownContact Form Entries 中危 -2024-01-16 15:52:59 Deep Dive
CVE-2022-23179 Contact Form & Lead Form Elementor Builder < 1.7.0 - Multiple Admin+ Stored Cross-Site Scripting UnknownContact Form & Lead Form Elementor Builder 中危 -2024-01-16 15:52:09 Deep Dive
CVE-2022-23180 Contact Form & Lead Form Elementor Builder Plugin < 1.7.4 - Multiple Subscriber+ Settings Update UnknownContact Form & Lead Form Elementor Builder 中危 -2024-01-16 15:52:09 Deep Dive
CVE-2022-0402 Superforms < 6.0.4 - Reflected Cross-Site Scripting UnknownSuper Forms - Drag & Drop Form Builder 中危 -2024-01-16 15:51:01 Deep Dive
CVE-2022-3764 Form Vibes < 1.4.5 - Admin+ SQLi UnknownForm Vibes 中危 -2024-01-16 15:50:50 Deep Dive
CVE-2023-6316 MW WP Form <= 5.0.1 - Unauthenticated Arbitrary File Upload inc2734MW WP Form Critical 9.8 2024-01-11 08:32:52 Deep Dive
CVE-2023-6645 Post Grid Combo – 36+ Gutenberg Blocks <= 2.2.64 - Authenticated (Contributor+) Cross-Site Scripting pickpluginsPost Grid Medium 6.4 2024-01-11 08:32:50 Deep Dive