Ninja Forms Security Vulnerabilities and Issues — Ninja Forms CVE List

Lucene search

NinjaformsNinja Forms

3 matches found

CVE•added 2018/09/01 6:29 p.m.•38 views

CVE-2018-16308

The Ninja Forms plugin before 3.3.14.1 for WordPress allows CSV injection.

8.6CVSS8.8AI score0.00358EPSS

CVE•added 2018/12/03 6:29 a.m.•35 views

CVE-2018-19796

An open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers to redirect a user via the lib/StepProcessing/step-processing.php (aka submissions download page) redirect parameter.

6.1CVSS6.3AI score0.00259EPSS

Web

CVE•added 2018/02/21 4:29 p.m.•33 views

CVE-2018-7280

The Ninja Forms plugin before 3.2.14 for WordPress has XSS.

6.1CVSS6.3AI score0.0021EPSS