Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
Docs
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a forms plugin vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2013-10020
A vulnerability, which was classified as problematic, was found in MMDeveloper A Forms Plugin up to 1.4.2 on WordPress. This affects an unknown part of the file a-forms.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading ...
Mmdeveloper A Forms Plugin
A-forms Project A-forms
7.3
CVSSv3
CVE-2025-2801
The The Create custom forms for WordPress with a smart form plugin for smart businesses plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.2.4. This is due to the software allowing users to execute an action that does not p...
Dorinabc Create Custom Forms For Wordpress With A Smart Form Plugin For Smart Businesses – Form Builder For Wordpress
5.4
CVSSv3
CVE-2023-50891
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Zoho Forms Form plugin for WordPress – Zoho Forms allows Stored XSS.This issue affects Form plugin for WordPress – Zoho Forms: from n/a up to and including ...
Zoho Forms Form Plugin For Wordpress – Zoho Forms
Zohocorp Zoho Forms
6.5
CVSSv3
CVE-2022-0163
The Smart Forms WordPress plugin prior to 2.6.71 does not have authorisation in its rednao_smart_forms_entries_list AJAX action, allowing any authenticated users, such as subscriber, to download arbitrary form's data, which could include sensitive information such as PII dep...
Unknown Smart Forms – When You Need More Than Just A Contact Form
Rednao Smart Forms
8.8
CVSSv3
CVE-2022-45803
Missing Authorization vulnerability in Nikolay Strikhar WordPress Form Builder Plugin – Gutenberg Forms.This issue affects WordPress Form Builder Plugin – Gutenberg Forms: from n/a up to and including 2.2.8.3.
Nikolay Strikhar Wordpress Form Builder Plugin – Gutenberg Forms
Gutenbergforms Gutenberg Forms
6.4
CVSSv3
CVE-2025-3468
The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the clean_html and form_fields parameters in all versions up to, and including, 8.9.1 due to insufficient input sanitization and o...
Webaways Nex-forms – Ultimate Forms Plugin For Wordpress
6.3
CVSSv3
CVE-2025-4208
The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to Limited Code Execution in all versions up to, and including, 8.9.1 via the get_table_records function. This is due to the unsanitized use of user-supplied input i...
Webaways Nex-forms – Ultimate Forms Plugin For Wordpress
4.8
CVSSv3
CVE-2023-49841
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FancyThemes Optin Forms – Simple List Building Plugin for WordPress allows Stored XSS.This issue affects Optin Forms – Simple List Building Plugin for WordP...
Fancythemes Optin Forms – Simple List Building Plugin For Wordpress
Fancythemes Optin Forms
5.4
CVSSv3
CVE-2023-0169
The Zoho Forms WordPress plugin prior to 3.0.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting...
Unknown Form Plugin For Wordpress
Zohocorp Zoho Forms
5.4
CVSSv3
CVE-2023-6953
The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and outpu...
Wpmanageninja Pdf Generator For Fluent Forms – The Contact Form Plugin
Wpmanageninja Pdf Generator For Fluent Forms
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
ruoyi-ai
CVE-2025-6417
CVE-2025-6362
aquatronica
infosphere information server
arbitrary code
validation
IMAP
winrar
CVE-2025-6018
CVE-2025-6402
CVE-2025-6447
CVE-2025-4275
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »