NEX-Forms – Ultimate Form Builder – Contact forms and much more — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in NEX-Forms – Ultimate Form Builder – Contact forms and much more, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE ID	Title	CVSS	Severity	Published
CVE-2023-52120	WordPress NEX-Forms – Ultimate Form Builder Plugin <= 8.5.2 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	5.4	Medium	2024-01-05
CVE-2023-50838	WordPress NEX-Forms – Ultimate Form Builder Plugin <= 8.5.5 is vulnerable to SQL Injection CWE-89	7.6	High	2023-12-28
CVE-2022-3142	NEX-Forms < 7.9.7 - Authenticated SQLi CWE-89	8.8	-	2022-09-19

All 3 known CVE vulnerabilities affecting NEX-Forms – Ultimate Form Builder – Contact forms and much more with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

NEX-Forms – Ultimate Form Builder – Contact forms and much more — Vulnerabilities & Security Advisories 3