CVE-2025-31080

The CVE-2025-31080 entry concerns HTML Forms for WordPress (HTML Forms plugin), with a Stored Cross-Site Scripting vulnerability caused by improper input neutralization during web page generation. Affected versions are HTML Forms: from n/a through 1.5.1. The CVSS 3.1 base metrics indicate a HIGH ...

CVE-2024-56060 WordPress HTML Forms plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Link Software LLC HTML Forms html-forms allows Reflected XSS.This issue affects HTML Forms: from n/a through = 1.4.1...

WordPress plugin HTML Forms SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

WordPress HTML Forms plugin <= 1.3.24 - Auth. SQL Injection (SQLi) vulnerability

Auth. SQL Injection SQLi vulnerability discovered by Nguyen Duy Quoc Khanh in the WordPress HTML Forms plugin versions = 1.3.24. Solution Update the WordPress HTML Forms plugin to the latest available version at least 1.3.25...