All 4 CVE vulnerabilities found in Ninja Forms - File Uploads, with AI-generated Chinese analysis, references, and POCs.
Vendor: SaturdayDrive
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-0740 | Ninja Forms - File Upload <= 3.3.26 - Unauthenticated Arbitrary File Upload CWE-434 | 9.8 | Critical | 2026-04-07 |
| CVE-2024-1596 | Ninja Forms File Uploads <= 3.3.16 - Unauthenticated Stored Cross-Site Scripting via File Upload CWE-79 | 7.2 | High | 2024-09-07 |
| CVE-2022-0888 | Ninja Forms - File Uploads Extension <= 3.3.0 - Arbitrary File Upload CWE-434 | 9.8 | Critical | 2022-03-23 |
| CVE-2022-0889 | Ninja Forms - File Uploads Extension <= 3.3.12 - Reflected Cross-Site Scripting CWE-79 | 7.2 | High | 2022-03-23 |
All 4 known CVE vulnerabilities affecting Ninja Forms - File Uploads with full Chinese analysis, references, and POCs where available.