Lucene search
K

4 matches found

EUVD
EUVD
added 2026/04/16 3:31 p.m.5 views

EUVD-2026-23237

The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference via the 'submissionid' parameter in versions up to, and including, 6.1.21. This is due to missing authorization and ownership validatio...

5.3CVSS5.8AI score0.00305EPSS
Exploits0References3
NVD
NVD
added 2026/04/16 2:16 p.m.4 views

CVE-2026-4160

The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference via the 'submissionid' parameter in versions up to, and including, 6.1.21. This is due to missing authorization and ownership validatio...

5.3CVSS0.00305EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/16 1:27 p.m.5 views

CVE-2026-4160

The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference via the 'submissionid' parameter in versions up to, and including, 6.1.21. This is due to missing authorization and ownership validatio...

5.3CVSS5.8AI score0.00305EPSS
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2012/01/19 12:0 a.m.15 views

WordPress Plugin ucan post 1.0.09 - Persistent Cross-Site Scripting

WordPress Plugin ucan post 1.0.09 - Persistent Cross-Site Scripting Exploit Title: Wordpress uCan Post plugin window.alertdocument.cookie Email field is not sanitized but can it will check for a valid email address so the maximum result will be a reflected xss POC:...

6.7AI score
Exploits0
Rows per page
Query Builder