Show filters
24 Total Results
Displaying 21-24 of 24
Sort by:
Attacker Value
Unknown
CVE-2023-25976
Disclosure Date: May 26, 2023 (last updated October 08, 2023)
Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.2.2 versions.
0
Attacker Value
Unknown
CVE-2022-38467
Disclosure Date: January 14, 2023 (last updated November 08, 2023)
Reflected Cross-Site Scripting (XSS) vulnerability in CRM Perks Forms – WordPress Form Builder <= 1.1.0 ver.
0
Attacker Value
Unknown
CVE-2021-25080
Disclosure Date: January 24, 2022 (last updated February 23, 2025)
The Contact Form Entries WordPress plugin before 1.1.7 does not validate, sanitise and escape the IP address retrieved via headers such as CLIENT-IP and X-FORWARDED-FOR, allowing unauthenticated attackers to perform Cross-Site Scripting attacks against logged in admins viewing the created entry
0
Attacker Value
Unknown
CVE-2021-25079
Disclosure Date: January 24, 2022 (last updated February 23, 2025)
The Contact Form Entries WordPress plugin before 1.2.4 does not sanitise and escape various parameters, such as form_id, status, end_date, order, orderby and search before outputting them back in the admin page
0
