25022 matches found
CVE-2026-32483 WordPress Contact Form Email plugin <= 1.3.63 - Broken Access Control vulnerability
Missing Authorization vulnerability in codepeople Contact Form Email contact-form-to-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form Email: from n/a through = 1.3.63...
CVE-2026-32483
Missing Authorization vulnerability in codepeople Contact Form Email contact-form-to-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form Email: from n/a through = 1.3.63...
CVE-2026-32483
The CVE-2026-32483 entry concerns the WordPress plugin WordPress Contact Form Email (plugin) versions up to 1.3.63. It describes a Missing Authorization vulnerability caused by incorrectly configured access control security levels in codepeople Contact Form Email. The impact is described as high ...
CVE-2026-25430
CVE-2026-25430 describes a Missing Authorization vulnerability in the Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms (cf7-mailchimp). Affected versions are from n/a through 1.2.2. The issue arises from incorrectly configured access control, enabling network-attacker...
CVE-2026-25430 WordPress Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in CRM Perks Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms cf7-mailchimp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integration for Mailchimp and Contact Form 7, WPForms, Elementor,...
CVE-2026-25430 WordPress Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in CRM Perks Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms cf7-mailchimp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integration for Mailchimp and Contact Form 7, WPForms, Elementor,...
CVE-2026-25339 WordPress Contact Form by WPForms plugin <= 1.9.8.7 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Retrieve Embedded Sensitive Data.This issue affects Contact Form by WPForms: from n/a through = 1.9.8.7...
CVE-2026-25339
CVE-2026-25339 concerns the WordPress plugin WPForms Lite (Contact Form by WPForms)
CVE-2026-24373
CVE-2026-24373: Affected software is Metagauss RegistrationMagic Custom Registration Forms, User Registration, Payment, and User Login (RegistrationMagic custom-registration-form-builder-with-submission-manager) version
CVE-2026-24363 WordPress WP Cost Estimation & Payment Forms Builder plugin < 10.3.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in loopus WP Cost Estimation & Payment Forms Builder WPEstimationForm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cost Estimation & Payment Forms Builder: from n/a through 10.3.0...
CVE-2026-24750 Kiteworks Secure Data Forms vulnerable to Cross-site Scripting
Kiteworks is a private data network PDN. In Kiteworks Secure Data Forms prior to version 9.2.1, an authenticated attacker could exploit an Improper Neutralization of Input During Web Page Generation as Stored XSS when modifying forms. Upgrade Kiteworks to version 9.2.1 or later to receive a patch...
CVE-2026-24750 Kiteworks Secure Data Forms vulnerable to Cross-site Scripting
Kiteworks is a private data network PDN. In Kiteworks Secure Data Forms prior to version 9.2.1, an authenticated attacker could exploit an Improper Neutralization of Input During Web Page Generation as Stored XSS when modifying forms. Upgrade Kiteworks to version 9.2.1 or later to receive a patch...
[SECURITY] Fedora 43 Update: python-multipart-1.3.1-1.fc43
This module provides a fast incremental non-blocking parser for multipart/form-data HTML5, RFC7578, as well as blocking alternatives for easier use in WSGI or CGI applications...
PT-2026-28142
Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 8.0.0.3 Description OpenEMR is an electronic health records and medical practice management application. Prior to version 8.0.0.3, an authenticated attacker could create a malicious form. When submitted by a victim,...
WordPress plugin WP Insightly for Contact Form 7、WPForms、Elementor、Formidable and Ninja Forms 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
WordPress plugin Contact Form Email 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...
PT-2026-28046
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHunk Contact Form & Lead Form Elementor Builder lead-form-builder allows Stored XSS.This issue affects Contact Form & Lead Form Elementor Builder: from n/a through = 2.0.1...
WordPress plugin Contact Form by WPForms 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
PT-2026-27902
Name of the Vulnerable Software and Affected Versions Contact Form by WPForms versions n/a through 1.9.8.7 Description A flaw exists in Contact Form by WPForms that allows retrieval of embedded sensitive data due to insertion of sensitive information into sent data. This issue impacts the way dat...
PT-2026-27855
Name of the Vulnerable Software and Affected Versions Metagauss RegistrationMagic versions through 6.0.7.1 Description An incorrect privilege assignment exists in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager, allowing for privilege escalation. The issue...