CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

8214 matches found

Prion•added 2022/02/28 9:15 a.m.•15 views

Path traversal

The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin through 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack...

4CVSS5AI score0.01299EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/02/28 9:6 a.m.•22 views

CVE-2021-24689 Contact Forms - Drag & Drop Contact Form Builder <= 1.0.5 - Admin+ Arbitrary System File Read

The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin through 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack...

5.3AI score0.01299EPSS

Exploits1References1

CVE•added 2022/02/28 9:6 a.m.•84 views

CVE-2021-24689

CVE-2021-24689 concerns the WordPress plugin Contact Forms - Drag & Drop Contact Form Builder (versions up to 1.0.5). The vulnerability is a path traversal flaw that allows high-privilege users to download arbitrary files from the web server, via the plugin’s file download feature. The core issue...

4.9CVSS5AI score0.01299EPSS

Exploits1References1Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•10 views

WordPress Automizy Gravity Forms plugin <= 1.0.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Automizy Gravity Forms plugin versions = 1.0.3. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•20 views

WordPress Contact Form 7 Multi-Step Forms plugin < 4.1.91 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Contact Form 7 Multi-Step Forms plugin versions 4.1.91. Solution Update the WordPress Contact Form 7 Multi-Step Forms plugin to the latest available version at least 4.1.91...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•13 views

WordPress WP Tools Gravity Forms Divi Module plugin <= 6.6.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WP Tools Gravity Forms Divi Module plugin versions = 6.6.2. Solution Update the WordPress WP Tools Gravity Forms Divi Module plugin to the latest available version at least 6.6.3...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•15 views

WordPress WP Tools Gravity Forms Divi Module plugin <= 6.6.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Tools Gravity Forms Divi Module plugin versions = 6.6.2. Solution Update the WordPress WP Tools Gravity Forms Divi Module plugin to the latest available version at least 6.6.3...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•12 views

WordPress Multi Page Auto Advance for Gravity Forms plugin <= 4.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Multi Page Auto Advance for Gravity Forms plugin versions = 4.2. Solution Update the WordPress Multi Page Auto Advance for Gravity Forms plugin to the latest available version at least 4.3...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•13 views

WordPress Gravity Forms Sticky List plugin <= 1.5.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Gravity Forms Sticky List plugin versions = 1.5.2. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•15 views

WordPress Contact Form 7 Multi-Step Forms plugin < 4.1.91 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Contact Form 7 Multi-Step Forms plugin versions 4.1.91. Solution Update the WordPress Contact Form 7 Multi-Step Forms plugin to the latest available version at least 4.1.91...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•12 views

WordPress SV Forms plugin < 1.8.10 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress SV Forms plugin versions 1.8.10. Solution Update the WordPress SV Forms plugin to the latest available version at least 1.8.10...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•11 views

WordPress Store Locator Plus® – Gravity Forms Locations plugin < 5.9.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Store Locator Plus® – Gravity Forms Locations plugin versions 5.9.1. Solution Update the WordPress Store Locator Plus® – Gravity Forms Locations plugin to the latest available version at least 5.9.1...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•9 views

WordPress SV Gravity Forms Enhancer plugin <= 1.4.05 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress SV Gravity Forms Enhancer plugin versions = 1.4.05. Solution Update the WordPress SV Gravity Forms Enhancer plugin to the latest available version at least 1.8.00...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•15 views

WordPress Custom Registration and Custom Login Forms with New Recaptcha plugin <= 1.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Custom Registration and Custom Login Forms with New Recaptcha plugin versions = 1.1. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•14 views

WordPress SV Forms plugin < 1.8.10 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress SV Forms plugin versions 1.8.10. Solution Update the WordPress SV Forms plugin to the latest available version at least 1.8.10...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•8 views

WordPress Automizy Gravity Forms plugin <= 1.0.3 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Automizy Gravity Forms plugin versions = 1.0.3. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•8 views

WordPress Block Styler For Gravity Forms plugin <= 5.0.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Block Styler For Gravity Forms plugin versions = 5.0.0. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•13 views

WordPress Forms to Sendinblue plugin <= 1.0.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Forms to Sendinblue plugin versions = 1.0.1. Solution No patched version available...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•6 views

WordPress Multi Page Auto Advance for Gravity Forms plugin <= 4.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Multi Page Auto Advance for Gravity Forms plugin versions = 4.2. Solution Update the WordPress Multi Page Auto Advance for Gravity Forms plugin to the latest available version at least 4.3...

Exploits0References2Affected Software1

Patchstack•added 2022/02/28 12:0 a.m.•9 views

WordPress Forms to Klaviyo plugin <= 1.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Forms to Klaviyo plugin versions = 1.0.0. Solution No patched version available...

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by