Lucene search
K

Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload

šŸ—“ļøĀ 01 Jul 2026Ā 03:36:47Reported byĀ ProjectDiscoveryTypeĀ 
nuclei
Ā nuclei
šŸ”—Ā github.comšŸ‘Ā 15Ā Views

Form Maker plugin allows unauthenticated arbitrary file upload and remote code execution.

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2023-4666
14 Oct 202314:04
–githubexploit
Circl
CVE-2023-4666
17 Oct 202300:32
–circl
CNNVD
WordPress plugin Form Maker by 10Web Code Issue Vulnerability
16 Oct 202300:00
–cnnvd
CVE
CVE-2023-4666
16 Oct 202319:39
–cve
Cvelist
CVE-2023-4666 Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
16 Oct 202319:39
–cvelist
EUVD
EUVD-2023-54518
16 Oct 202319:39
–euvd
NVD
CVE-2023-4666
16 Oct 202320:15
–nvd
OSV
CVE-2023-4666
16 Oct 202320:15
–osv
Prion
Input validation
16 Oct 202320:15
–prion
Positive Technologies
PT-2023-30146
16 Oct 202300:00
–ptsecurity
Rows per page
id: CVE-2023-4666

info:
  name: Form-Maker < 1.15.20 - Unauthenticated Arbitrary File Upload
  author: pussycat0x
  severity: critical
  description: |
    The plugin does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE.
  impact: |
    Unauthenticated attackers can exploit missing signature validation to upload arbitrary files and achieve remote code execution on WordPress installations running vulnerable Form-Maker plugins.
  remediation: Fixed in 1.15.20
  reference:
    - https://wpscan.com/vulnerability/c6597e36-02d6-46b4-89db-52c160f418be/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2023-4666
    epss-score: 0.03283
    epss-percentile: 0.86906
    cpe: cpe:2.3:a:10web:form_maker:*:*:*:*:*:wordpress:*:*
  metadata:
    verified: true
    fofa-query: 'body="/wp-content/plugins/form-maker/"'
    max-request: 1
    vendor: 10web
    product: form_maker
    framework: wordpress
  tags: wpscan,cve,cve2023,wordpress,wp-plugin,form-maker,passive,vkev,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-content/plugins/form-maker/readme.txt"

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - "status_code == 200"
          - "compare_versions(version, '< 1.15.20')"
          - "contains(body, 'Form Maker by 10Web')"
        condition: and

    extractors:
      - type: regex
        part: body
        group: 1
        name: version
        regex:
          - 'Stable tag: ([0-9.]+)'
        internal: true
# digest: 4a0a0047304502200b49a6c3e5de8c5fef9c8c140214c244d221feea7a3852bf93473716447353c8022100ed32a1d989f3f88ce67536baffd1ec207c2ef8c8692e46999fc13647dbd570df:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.5High risk
Vulners AI Score7.5
CVSS 3.19.8
EPSS0.03283
SSVC
15