This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
The Contact Form Entries plugin, used in WordPress websites, is vulnerable to a type of attack called SQL Injection in versions up to 1.3.0. This type of attack occurs when a malicious user can add e...
Read MoreThe Contact Form Entries plugin for WordPress, up to and including version 1.3.0, is vulnerable to a type of attack called Stored Cross-Site Scripting. This type of attack makes it possible for someo...
Read MoreThe Contact Form Entries - Contact Form 7, WPforms and more plugin for WordPress is vulnerable to a type of attack called Reflected Cross-Site Scripting. This attack is possible in versions up to and...
Read MoreThe Contact Form Entries plugin for WordPress is not secure in versions up to 1.2.9. If someone with malicious intentions uses the plugin to export a CSV file
Read MoreSeveral plugins for the WordPress Content Management System have an input validation vulnerability. This means that an attacker could trick a user into clicking on a malicious link, which could injec...
Read More