Latest

Configuring Really Simple Security with WP-CLI

Access violation vulnerability in NEX-Forms – Ultimate Form Builder – Contact forms and much more 8.8.1

CVE-2024-13498

Severity: medium-risk
Status: Fixed
Publication: March 11, 2025

A popular plugin for WordPress called NEX-Forms has a security issue that could expose sensitive information. This can happen when files are uploaded through the plugin, because it does not have enough protection to prevent unauthorized access. This means that hackers could potentially access and steal important data.

Detected in:

NEX-Forms – Ultimate Form Builder – Contact forms and much more fixed vulnerable versions: >= * <= 8.8.1

NEX-Forms – Ultimate Forms Plugin for WordPress fixed vulnerable versions:

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

Access violation vulnerability in NEX-Forms – Ultimate Form Builder – Contact forms and much more 8.8.1

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

Access violation vulnerability in NEX-Forms – Ultimate Form Builder – Contact forms and much more 8.8.1

Detected in: