Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.11 views

CVE-2023-1405

The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present...

7.5CVSS7AI score0.00702EPSS
Exploits2References1
Circl
Circl
added 2024/01/16 5:27 p.m.17 views

CVE-2023-1405

creationtimestamp| type| source ---|---|--- 2024-01-16 17:27:03+00:00| seen| https://t.me/ctinow/168904 2024-01-23 17:17:00+00:00| seen| https://t.me/ctinow/172140 2025-06-11 17:34:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18100 2025-09-29 21:02:20+00:00| seen|...

7.5CVSS7.9AI score0.00702EPSS
Exploits2References4
NVD
NVD
added 2024/01/16 4:15 p.m.39 views

CVE-2023-1405

The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present...

7.5CVSS7.7AI score0.00702EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/01/16 3:56 p.m.11 views

CVE-2023-1405 Formidable Forms < 6.2 - Unauthenticated PHP Object Injection

The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present...

7.4AI score0.00702EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/01/16 3:56 p.m.72 views

CVE-2023-1405 Formidable Forms < 6.2 - Unauthenticated PHP Object Injection

The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present...

7.9AI score0.00702EPSS
Exploits2References1
CVE
CVE
added 2024/01/16 3:56 p.m.351 views

CVE-2023-1405

CVE-2023-1405 affects the Formidable Forms WordPress plugin up to version 6.1.2. It arises from unserializing user input, enabling unauthenticated PHP Object Injection when a suitable gadget is present. Impact is HIGH (I:HIGH, A:NONE) with remote attacker access. Mitigation: upgrade to version 6....

7.5CVSS7.6AI score0.00702EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/04/07 12:0 a.m.19 views

WordPress Formidable Forms Plugin <= 6.1.2 is vulnerable to PHP Object Injection

Software Formidable Forms Type Plugin Vulnerable versions = 6.1.2 Fixed in 6.2 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2023-1405 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID e0f1ba3999f1 Credits Nguyen Huu Do Required privilege...

7.5CVSS7.2AI score0.00702EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder