All 6 CVE vulnerabilities found in Quick Contact Form, with AI-generated Chinese analysis, references, and POCs.
Vendor: Fullworks
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-12718 | Quick Contact Form <= 8.2.6 - Unauthenticated Open Mail Relay CWE-20 | 5.8 | Medium | 2026-01-17 |
| CVE-2025-67471 | WordPress Quick Contact Form plugin <= 8.2.5 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-12-09 |
| CVE-2025-48245 | WordPress Quick Contact Form plugin <= 8.2.1 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2025-05-23 |
| CVE-2023-25035 | WordPress Quick Contact Form plugin <= 8.0.3.1 - Broken Access Control vulnerability CWE-862 | 6.5 | Medium | 2024-12-09 |
| CVE-2022-47608 | WordPress Quick Contact Form Plugin <= 8.0.3.1 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 5.9 | Medium | 2023-04-25 |
| CVE-2023-23885 | WordPress Quick Contact Form Plugin <= 8.0.3.1 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 6.5 | Medium | 2023-04-07 |
All 6 known CVE vulnerabilities affecting Quick Contact Form with full Chinese analysis, references, and POCs where available.