WordPress Integration for Contact Form 7 and Constant Contact plugin <= 1.1.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Frissi0n in WordPress Plugin Integration for Contact Form 7 and Constant Contact versions = 1.1.6...

CVE-2025-60174

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Object Injection.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.2...

EUVD-2025-204098

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Object Injection.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.2...

CVE-2025-60174

CVE-2025-60174 affects the WordPress plugin WP Gravity Forms Constant Contact Plugin gf-constant-contact (versions from unspecified n/a up to and including 1.1.2). The vulnerability is described as a Deserialization of Untrusted Data issue that allows Object Injection. Core details provided acros...

CVE-2025-60174 WordPress WP Gravity Forms Constant Contact plugin plugin <= 1.1.2 - Deserialization of untrusted data vulnerability

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Object Injection.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.2...

PT-2025-52148

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Object Injection.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.2...

EUVD-2024-35393

Malicious code in bioql PyPI...

EUVD-2023-51877

Malicious code in bioql PyPI...

CVE-2025-54684

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks Integration for Contact Form 7 and Constant Contact cf7-constant-contact allows Stored XSS.This issue affects Integration for Contact Form 7 and Constant Contact: from n/a through = 1.1.7...

CVE-2025-54684

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CRM Perks Integration for Contact Form 7 and Constant Contact cf7-constant-contact allows Stored XSS.This issue affects Integration for Contact Form 7 and Constant Contact: from n/a through = 1.1.7...

CVE-2025-54684

The CVE-2025-54684 entry concerns the WordPress plugin Integration for Constant Contact and Contact Form 7 (CRM Perks Integration) with versions up to 1.1.7. Description: stored cross-site scripting (XSS) due to improper neutralization of input during web page generation. Affected products listed...

PT-2025-33236 · WordPress · Crm Perks Integration For Contact Form 7/Constant Contact

Name of the Vulnerable Software and Affected Versions: CRM Perks Integration for Contact Form 7 and Constant Contact versions through 1.1.7 Description: The CRM Perks Integration for Contact Form 7 and Constant Contact is susceptible to a stored cross-site scripting XSS issue due to improper...

CVE-2025-30954

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Phishing.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.0...

CVE-2025-30954 WordPress WP Gravity Forms Constant Contact Plugin <= 1.1.0 - Open Redirection Vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in CRM Perks WP Gravity Forms Constant Contact Plugin gf-constant-contact allows Phishing.This issue affects WP Gravity Forms Constant Contact Plugin: from n/a through = 1.1.0...

CVE-2024-22137

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in MailMunch Constant Contact Forms by MailMunch allows Stored XSS.This issue affects Constant Contact Forms by MailMunch: from n/a through 2.0.11...

CVE-2024-54343

CVE-2024-54343 is a Reflected Cross-Site Scripting vulnerability in the WordPress plugin Connect Contact Form 7 to Constant Contact (

CVE-2023-34387

CVE-2023-34387 concerns the WordPress plugin Constant Contact Forms (versions ≤ 2.0.3). The issue is a Missing Authorization vulnerability, specifically related to an improperly protected access point (constant_contact_optin_ajax_handler) that could allow bypassing authorization checks. The CVE i...

WordPress plugin Connect Contact Form 7 to Constant Contact 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

PT-2024-36228 · Unknown · Connect Contact Form 7 To Constant Contact

Name of the Vulnerable Software and Affected Versions: Connect Contact Form 7 to Constant Contact versions 1.4 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting XSS vulnerability. Specifically, it is...

WordPress Connect Contact Form 7 to Constant Contact plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Connect Contact Form 7 to Constant Contact versions = 1.4...