Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.7 views

PT-2025-21449 · WordPress · The Form Maker

Name of the Vulnerable Software and Affected Versions: The Form Maker by 10Web WordPress plugin versions prior to 1.15.33 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This is possible even when the unfiltered html capability i...

4.8CVSS4.5AI score0.00266EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/16 12:0 a.m.3 views

PT-2025-16560 · WordPress · The Form Maker

Name of the Vulnerable Software and Affected Versions: The Form Maker by 10Web WordPress plugin versions prior to 1.15.32 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This can occur even when the unfiltered html capability is...

4.8CVSS5.3AI score0.00239EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.4 views

PT-2025-1594 · 10Web · The Form Maker

Name of the Vulnerable Software and Affected Versions: The Form Maker by 10Web WordPress plugin versions prior to 1.15.31 Description: The issue allows high privilege users, such as admin, to perform Stored Cross-Site Scripting attacks even when the unfiltered html capability is disallowed, for...

2.7CVSS4.5AI score0.00408EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/09/26 12:0 a.m.8 views

PT-2024-39147 · 10Web · The Form Maker

Name of the Vulnerable Software and Affected Versions: The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress versions up to, and including, 1.15.27 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and...

5.5CVSS6.1AI score0.00321EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/07/01 12:0 a.m.5 views

PT-2024-37406 · 10Web · The Form Maker

Name of the Vulnerable Software and Affected Versions: The Form Maker by 10Web WordPress plugin versions prior to 1.15.26 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This is possible because some settings are not properly...

4.8CVSS5.9AI score0.00442EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.6 views

PT-2023-30146

Name of the Vulnerable Software and Affected Versions The Form Maker by 10Web WordPress plugin versions prior to 1.15.20 Description The issue allows unauthenticated users to create arbitrary files on the server from user input due to a lack of signature validation, potentially leading to remote...

9.8CVSS9.4AI score0.03283EPSS
Exploits3References7
Rows per page
Query Builder