The nex-forms-express-wp-form-builder plugin prior to 4.6.1 for WordPress has SQL injection via the wp-admin/admin.php?page=nex-forms-main nex_forms_Id parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nex-forms - ultimate form builder project nex-forms - ultimate form builder |