Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wpeverest contact form vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-24689
The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin up to and including 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack
Wpeverest Contact Form
4.3
CVSSv2
CVE-2021-24907
The Contact Form, Drag and Drop Form Builder for WordPress plugin prior to 1.8.0 does not escape the status parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue
Wpeverest Everest Forms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started