Wordpress Contact Forms Security Vulnerabilities and Issues — Wordpress Contact Forms CVE List

Lucene search

CimattiWordpress Contact Forms

4 matches found

CVE•added 2024/03/31 8:15 p.m.•54 views

CVE-2024-30549

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cimatti Consulting Contact Forms by Cimatti allows Stored XSS.This issue affects Contact Forms by Cimatti: from n/a through 1.8.0.

5.9CVSS6AI score0.00045EPSS

CVE•added 2024/11/27 11:15 a.m.•53 views

CVE-2024-10521

The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.2. This is due to missing or incorrect nonce validation on the process_bulk_action function. This makes it possible for unauthenticated attackers to dele...

4.3CVSS4.3AI score0.00019EPSS

CVE•added 2024/03/19 3:15 p.m.•41 views

CVE-2024-29117

7.1CVSS7AI score0.00093EPSS

CVE•added 2024/12/13 3:15 p.m.•37 views

CVE-2023-35051

Missing Authorization vulnerability in Cimatti Consulting Contact Forms by Cimatti allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Forms by Cimatti: from n/a through 1.5.7.

8.8CVSS5.6AI score0.00145EPSS