All 4 CVE vulnerabilities found in CP Contact Form with PayPal, with AI-generated Chinese analysis, references, and POCs.
Vendor: CodePeople, paypaldev
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32433 | WordPress CP Contact Form with Paypal plugin <= 1.3.61 - SQL Injection vulnerability CWE-89 | 9.8 | - | 2026-03-13 |
| CVE-2025-13384 | CP Contact Form with PayPal <= 1.3.56 - Missing Authorization to Unauthenticated Arbitrary Payment Confirmation CWE-862 | 7.5 | High | 2025-11-22 |
| CVE-2024-13758 | CP Contact Form with PayPal <= 1.3.52 - Cross-Site Request Forgery CWE-352 | 6.5 | Medium | 2025-01-30 |
| CVE-2023-27460 | WordPress CP Contact Form with PayPal plugin <= 1.3.34 - Missing Authorization Leading To Feedback Submission vulnerability CWE-862 | 4.3 | Medium | 2024-06-03 |
All 4 known CVE vulnerabilities affecting CP Contact Form with PayPal with full Chinese analysis, references, and POCs where available.