Log out
Get PRO

Latest

Denial of Service vulnerability in Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress 3.6.25

  • Severity: medium-risk
  • Status: Fixed
  • Publication: July 7, 2023

The Ninja Forms plugin for WordPress has a vulnerability that could cause a denial of service in versions up to 3.6.25. Attackers could craft form submissions with too much extra data, which could be more than the database can handle. This would prevent further requests from being successful while the submission is being processed.

Detected in:

Ninja Forms – The Contact Form Builder That Grows With You fixed vulnerable versions:
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress fixed vulnerable versions: >= * <= 3.6.25

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.