Database for Contact Form 7, WPforms, Elementor forms

This information is sourced from wpvulnerabilities.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Vulnerabilities

  • Input validation vulnerability in Database for Contact Form 7, WPforms, Elementor forms 1.4.3

    Fixed

    A popular database used by WordPress plugins such as Contact Form 7, WPforms, and Elementor forms has a security vulnerability. This means that people who are not authorized to access the database ca...

    Read More
  • Input validation vulnerability in Database for Contact Form 7, WPforms, Elementor forms 1.3.8

    Fixed

    A popular database used for creating contact forms on WordPress websites has a security vulnerability that allows hackers to insert harmful code into pages. This can happen whenever someone visits th...

    Read More
  • Input validation vulnerability in Database for Contact Form 7, WPforms, Elementor forms 1.3.3

    Fixed

    The contact form plugin for WordPress, called "Database for Contact Form 7, WPforms, and Elementor forms," has a security issue that allows attackers to insert harmful code into webpages. This can ha...

    Read More
  • Input validation vulnerability in Database for Contact Form 7, WPforms, Elementor forms 1.3.2

    Fixed

    The Contact Form Entries plugin for WordPress has a security issue where anyone with administrator privileges can upload any type of file to the website. This could potentially allow them to gain con...

    Read More
  • Input validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.3.0

    Fixed

    The Contact Form Entries plugin, used in WordPress websites, is vulnerable to a type of attack called SQL Injection in versions up to 1.3.0. This type of attack occurs when a malicious user can add e...

    Read More
  • Input validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.3.0

    Fixed

    The Contact Form Entries plugin for WordPress, up to and including version 1.3.0, is vulnerable to a type of attack called Stored Cross-Site Scripting. This type of attack makes it possible for someo...

    Read More
  • Input validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.2.0

    Fixed

    The Contact Form Entries - Contact Form 7, WPforms and more plugin for WordPress is vulnerable to a type of attack called Reflected Cross-Site Scripting. This attack is possible in versions up to and...

    Read More
  • Output validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.2.9

    Fixed

    The Contact Form Entries plugin for WordPress is not secure in versions up to 1.2.9. If someone with malicious intentions uses the plugin to export a CSV file

    Read More
  • Input validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.1.6

    Fixed

    Read More
  • Input validation vulnerability in Contact Form Entries – Contact Form 7, WPforms and more 1.2.3

    Fixed

    Read More
  • Input validation vulnerability in 27 plugins by CRM Perks

    Fixed

    Several plugins for the WordPress Content Management System have an input validation vulnerability. This means that an attacker could trick a user into clicking on a malicious link, which could injec...

    Read More