Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wpeverest contact form vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-24689
The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin up to and including 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack
Wpeverest Contact Form
4.3
CVSSv2
CVE-2021-24907
The Contact Form, Drag and Drop Form Builder for WordPress plugin prior to 1.8.0 does not escape the status parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue
Wpeverest Everest Forms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started