Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web-dorado form maker vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-5991
SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798.
Web-dorado Form Maker 3.6.12
1 EDB exploit
7.5
CVSSv2
CVE-2015-2798
SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Web-dorado Contact Form Maker 1.0.1
1 EDB exploit
6.8
CVSSv2
CVE-2018-10504
The WebDorado "Form Maker by WD" plugin prior to 1.12.24 for WordPress allows CSV injection.
Web-dorado Form Maker
1 EDB exploit
NA
CVE-2023-2655
The Contact Form by WD WordPress plugin up to and including 1.13.23 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
Web-dorado Contact Form Maker
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started