Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 350 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-2801 Create custom forms for WordPress with a smart form plugin for smart businesses <= 1.2.4 - Unauthenticated Arbitrary Shortcode Execution dorinabcCreate custom forms for WordPress with a smart form plugin for smart businesses – Form builder for WordPress High 7.3 2025-04-26 03:24:24 Deep Dive
CVE-2025-3912 WS Form LITE – Drag & Drop Contact Form Builder for WordPress <= 1.10.35 - Missing Authorization to Unauthenticated Sensitive Information Exposure westguardWS Form LITE – Drag & Drop Contact Form Builder Medium 5.3 2025-04-25 11:12:52 Deep Dive
CVE-2025-2580 Contact Form by Bit Form <= 2.18.3 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload bitpressadminBit Form – Custom Contact Form, Multi Step, Conversational Form & Payment Form builder Medium 4.9 2025-04-25 05:25:06 Deep Dive
CVE-2025-1294 eForm <= 4.18.0 - Unauthenticated Stored Cross-Site Scripting WPQuarkeForm - WordPress Form Builder High 7.2 2025-04-24 22:22:15 Deep Dive
CVE-2025-3479 Forminator <= 1.42.0 - Order Replay Vulnerability wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 5.3 2025-04-17 11:13:06 Deep Dive
CVE-2025-3487 Forminator <= 1.42.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'limit' wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 6.4 2025-04-17 11:13:06 Deep Dive
CVE-2025-3615 Fluent Forms <= 6.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting techjewelFluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder Medium 6.4 2025-04-17 07:34:08 Deep Dive
CVE-2025-3421 Everest Forms <= 3.1.1 - Reflected Cross-Site Scripting wpeverestEverest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder Medium 6.1 2025-04-11 12:42:25 Deep Dive
CVE-2025-3422 Everest Forms <= 3.1.1 - Authenticated (Subscriber+) Arbitrary Shortcode Execution wpeverestEverest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder Medium 5.4 2025-04-11 12:42:24 Deep Dive
CVE-2025-3439 Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress <= 3.1.1 - Unauthenticated PHP Object Injection wpeverestEverest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder Critical 9.8 2025-04-11 12:42:24 Deep Dive
CVE-2025-32199 WordPress Contact Form Builder by vcita plugin <= 4.10.2 - Cross Site Scripting (XSS) vulnerability eyale-vcContact Form Builder by vcita Medium 6.5 2025-04-10 08:09:44 Deep Dive
CVE-2024-13666 Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder <= 5.2.12 - IP-Spoofing techjewelFluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder Medium 5.3 2025-03-22 08:24:18 Deep Dive
CVE-2025-1530 Tripetto <= 8.0.9 - Cross-Site Request Forgery to Arbitrary Results Deletion tripettoWordPress form builder plugin for contact forms, surveys and quizzes – Tripetto Medium 4.3 2025-03-15 11:13:29 Deep Dive
CVE-2024-13497 WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto <= 8.0.9 - Unauthenticated Stored Cross-Site Scripting tripettoWordPress form builder plugin for contact forms, surveys and quizzes – Tripetto High 7.2 2025-03-15 04:22:08 Deep Dive
CVE-2024-13498 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.8.1 - Unauthenticated Sensitive Information Exposure webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 5.3 2025-03-12 05:22:52 Deep Dive
CVE-2025-28864 WordPress Builder for Contact Form 7 by Webconstruct plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerability Planet StudioBuilder for Contact Form 7 by Webconstruct Medium 4.3 2025-03-11 21:00:35 Deep Dive
CVE-2025-26994 WordPress Zigaform – Price Calculator & Cost Estimation Form Builder Lite plugin <= 7.4.2 - Cross Site Scripting (XSS) vulnerability softdiscoverZigaform – Price Calculator & Cost Estimation Form Builder Lite High 7.1 2025-03-03 13:30:42 Deep Dive
CVE-2024-12544 SurveyJS: Drag & Drop WordPress Form Builder to create, style and embed multiple forms of any complexity <= 1.12.17 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Deletion via SurveyJS_DeleteFile devsoftbalticSurveyJS: Drag & Drop Form Builder High 8.8 2025-03-01 07:24:06 Deep Dive
CVE-2025-0469 Forminator <= 1.39.2 - Authenticated (Contributor+) Stored Cross-Site Scripting wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 6.4 2025-02-27 04:21:44 Deep Dive
CVE-2025-1128 Everest Forms <= 3.0.9.4 - Unauthenticated Arbitrary File Upload, Read, and Deletion wpeverestEverest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder Critical 9.8 2025-02-25 06:58:31 Deep Dive