Lucene search
K

5 matches found

NVD
NVD
added 2026/06/18 6:16 a.m.17 views

CVE-2026-11776

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to generic SQL Injection via the 'groupids' parameter in all versions up to, and including, 1.15.43 due to insufficient escaping on the user supplied parameter and lack of sufficient...

4.9CVSS0.00355EPSS
Exploits0References10
CVE
CVE
added 2026/06/18 4:31 a.m.16 views

CVE-2026-11776

The CVE covers the WordPress plugin Form Maker by 10Web (Mobile‑Friendly Drag & Drop Contact Form Builder). The vulnerability is a generic SQL Injection in the handling of the groupids parameter, in all versions up to and including 1.15.43, due to insufficient escaping of user input and lack of p...

4.9CVSS5.9AI score0.00355EPSS
Exploits0References10
EUVD
EUVD
added 2026/06/18 4:31 a.m.13 views

EUVD-2026-37842

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to generic SQL Injection via the 'groupids' parameter in all versions up to, and including, 1.15.43 due to insufficient escaping on the user supplied parameter and lack of sufficient...

4.9CVSS5.8AI score0.00355EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/06/18 4:31 a.m.27 views

CVE-2026-11776 Form Maker by 10Web <= 1.15.43 - Authenticated (Adminsitrator+) SQL Injection via 'groupids' Parameter

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to generic SQL Injection via the 'groupids' parameter in all versions up to, and including, 1.15.43 due to insufficient escaping on the user supplied parameter and lack of sufficient...

4.9CVSS0.00355EPSS
Exploits0References10
seebug.org
seebug.org
added 2014/07/03 12:0 a.m.36 views

Discuz 7.2 /faq.php SQL注入漏洞

elseif$action == 'grouppermission' ... ... ksort$gids; $groupids = array; foreach$gids as $row $groupids = $row0; $query = $db-query"SELECT FROM $tablepreusergroups u LEFT JOIN $tablepreadmingroups a ON u.groupid=a.admingid WHERE u.groupid IN ".implodeids$groupids."";...

7AI score
Exploits0
Rows per page
Query Builder