Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

WordPress plugin Quiz And Survey Master 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

5.3CVSS6AI score0.00519EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-50097

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00379EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:13 a.m.11 views

CVE-2024-9700

The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.36.0 via the submitquizzes function due to missing validation on the 'entryid' user controlled key. This makes it...

5.3CVSS6.8AI score0.00379EPSS
Exploits0References1
NVD
NVD
added 2024/10/31 6:15 a.m.15 views

CVE-2024-9700

The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.36.0 via the submitquizzes function due to missing validation on the 'entryid' user controlled key. This makes it...

5.3CVSS0.00379EPSS
Exploits0References3
OSV
OSV
added 2024/10/31 6:15 a.m.6 views

CVE-2024-9700

The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.36.0 via the submitquizzes function due to missing validation on the 'entryid' user controlled key. This makes it...

5.3CVSS5.8AI score0.00379EPSS
Exploits0References3
CVE
CVE
added 2024/10/31 5:31 a.m.53 views

CVE-2024-9700

CVE-2024-9700 affects the WordPress plugin “Forminator Forms – Contact Form, Payment Form & Custom Form Builder” and covers all versions up to and including 1.36.0. The vulnerability is an Insecure Direct Object Reference via the submit_quizzes() function, caused by missing validation on the entr...

5.3CVSS5.2AI score0.00379EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/30 12:0 a.m.7 views

PT-2024-39769 · WordPress · Forminator Forms

Name of the Vulnerable Software and Affected Versions: Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress versions up to, and including, 1.36.0 Description: The issue is related to Insecure Direct Object Reference, which allows unauthenticated attackers to...

5.3CVSS7.3AI score0.00379EPSS
Exploits0References9
Rows per page
Query Builder