Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bestwebsoft vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-18562
The error-log-viewer plugin prior to 1.0.6 for WordPress has multiple XSS issues.
Bestwebsoft Error Log Viewer
4.3
CVSSv2
CVE-2017-18490
The contact-form-multi plugin prior to 1.2.1 for WordPress has multiple XSS issues.
Bestwebsoft Contact Form Multi
4.3
CVSSv2
CVE-2017-18493
The custom-admin-page plugin prior to 0.1.2 for WordPress has multiple XSS issues.
Bestwebsoft Custom Admin Page
NA
CVE-2014-125095
A vulnerability was found in BestWebSoft Contact Form Plugin 1.3.4 on WordPress and classified as problematic. Affected by this issue is the function bws_add_menu_render of the file bws_menu/bws_menu.php. The manipulation of the argument bwsmn_form_email leads to cross site scrip...
Bestwebsoft Contact Form 1.3.4
NA
CVE-2014-125100
A vulnerability classified as problematic was found in BestWebSoft Job Board Plugin 1.0.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 1.0.1 is able to address thi...
Bestwebsoft Job Board 1.0.0
4
CVSSv2
CVE-2021-24966
The Error Log Viewer WordPress plugin up to and including 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder
Bestwebsoft Error Log Viewer
4.3
CVSSv2
CVE-2017-18492
The contact-form-to-db plugin prior to 1.5.7 for WordPress has multiple XSS issues.
Bestwebsoft Contact Form To Db
NA
CVE-2023-29096
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress.This issue affects Contact Form to DB by BestWebSoft – Messages Datab...
Bestwebsoft Contact Form To Db
NA
CVE-2023-36508
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress contact-form-to-db allows SQL Injection.This issue affects Contact Form to ...
Bestwebsoft Contact Form To Db
NA
CVE-2024-31295
Guessable CAPTCHA vulnerability in BestWebSoft Captcha by BestWebSoft allows Functionality Bypass.This issue affects Captcha by BestWebSoft: from n/a up to and including 5.2.0.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »