Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bestwebsoft vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-10022
A vulnerability, which was classified as problematic, has been found in BestWebSoft Contact Form Plugin 3.51 on WordPress. Affected by this issue is the function cntctfrm_display_form/cntctfrm_check_form of the file contact_form.php. The manipulation leads to cross site scripting...
Bestwebsoft Contact Form 3.51
356
VMScore
CVE-2021-24966
The Error Log Viewer WordPress plugin up to and including 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder
Bestwebsoft Error Log Viewer
NA
CVE-2014-125095
A vulnerability was found in BestWebSoft Contact Form Plugin 1.3.4 on WordPress and classified as problematic. Affected by this issue is the function bws_add_menu_render of the file bws_menu/bws_menu.php. The manipulation of the argument bwsmn_form_email leads to cross site scrip...
Bestwebsoft Contact Form 1.3.4
312
VMScore
CVE-2017-20055
A vulnerability classified as problematic has been found in BestWebSoft Contact Form Plugin 4.0.0. This affects an unknown part. The manipulation leads to basic cross site scripting (Stored). It is possible to initiate the attack remotely. The exploit has been disclosed to the pu...
Bestwebsoft Contact Form 4.0.0
383
VMScore
CVE-2017-18542
The zendesk-help-center plugin prior to 1.0.5 for WordPress has multiple XSS issues.
Bestwebsoft Zendesk Help Center
383
VMScore
CVE-2017-18562
The error-log-viewer plugin prior to 1.0.6 for WordPress has multiple XSS issues.
Bestwebsoft Error Log Viewer
NA
CVE-2022-3393
The Post to CSV by BestWebSoft WordPress plugin up to and including 1.4.0 does not properly escape fields when exporting data as CSV, leading to a CSV injection
Bestwebsoft Post To Csv
NA
CVE-2023-4469
The Profile Extra Fields by BestWebSoft plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the prflxtrflds_export_file function in versions up to, and including, 1.2.7. This makes it possible for unauthenticated malicious users ...
Bestwebsoft Profile Extra Fields
NA
CVE-2023-36527
Improper Neutralization of Formula Elements in a CSV File vulnerability in BestWebSoft Post to CSV by BestWebSoft.This issue affects Post to CSV by BestWebSoft: from n/a up to and including 1.4.0.
Bestwebsoft Post To Csv
NA
CVE-2012-10010
A vulnerability was found in BestWebSoft Contact Form 3.21. It has been classified as problematic. This affects the function cntctfrm_settings_page of the file contact_form.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. ...
Bestwebsoft Contact Form 3.21
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »