All 3 CVE vulnerabilities found in Contact Form, with AI-generated Chinese analysis, references, and POCs.
Vendor: BestWebSoft
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30935 | WordPress Contact Form plugin <= 2.0.12 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-06-06 |
| CVE-2023-44231 | WordPress Contact Form Plugin <= 2.0.10 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 4.3 | Medium | 2023-10-09 |
| CVE-2012-10010 | BestWebSoft Contact Form contact_form.php cntctfrm_settings_page cross-site request forgery CWE-352 | 4.3 | Medium | 2023-04-09 |
All 3 known CVE vulnerabilities affecting Contact Form with full Chinese analysis, references, and POCs where available.