Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2025/07/15 12:0 a.m.8 views

WordPress SureForms Plugin Multiple Vulnerabilities (Jul 2025)

The WordPress plugin SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:brainstormforce:sureforms"; if description...

8.1CVSS9.5AI score0.00984EPSS
Exploits0References2
Circl
Circl
added 2025/07/09 8:24 a.m.8 views

CVE-2025-6691

creationtimestamp| type| source ---|---|--- 2025-07-09 08:24:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltjfbxqifc27 2025-07-11 15:53:46+00:00| seen| https://bsky.app/profile/thedailytechfeed.com/post/3ltp7cb7vzk2k...

8.1CVSS8.9AI score0.00984EPSS
Exploits0References2
NVD
NVD
added 2025/07/09 6:15 a.m.8 views

CVE-2025-6691

The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteentryfiles function in all versions up to, and including, 1.7.3. This makes it possible for unauthenticated attackers to...

8.1CVSS0.00984EPSS
Exploits0References4
CVE
CVE
added 2025/07/09 5:23 a.m.48 views

CVE-2025-6691

CVE-2025-6691 affects the WordPress plugin SureForms – Drag and Drop Form Builder (Brainstorm Force) up to version 1.7.3. The vulnerability arises from insufficient file path validation in the delete_entry_files() function, enabling unauthenticated attackers to delete arbitrary files on the serve...

8.1CVSS7.6AI score0.00984EPSS
Exploits0References4Affected Software1
Patchstack
Patchstack
added 2025/07/09 12:0 a.m.11 views

WordPress SureForms Plugin <= 1.7.3 is vulnerable to Arbitrary File Deletion

Software SureForms Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.7.4 OWASP Top 10 A3: Injection Classification Arbitrary File Deletion CVE CVE-2025-6691 Patch priority High CVSS severity High 8.1 Developer Brainstorm Force PSID d93b2c396300 Credits Phat RiO - BlueRock Required privilege...

8.1CVSS6.3AI score0.00984EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder