Team IT Security (TSEC) Nachrichtenportal Logo

🕵️ CVE-2024-9528 | techjewel Contact Form Plugin by Fluent Forms for Quiz up to 5.1.19 on WordPress Form Label Field cross site scripting


Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com

A vulnerability was found in techjewel Contact Form Plugin by Fluent Forms for Quiz, Survey and and Drag & Drop WP Form Builder up to 5.1.19 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Form Label Field Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-9528. The attack can be launched remotely. There is no exploit available. ...

Sharing is caring on Social Media

Reddit
Telegram
LinkedIn
Xing
Twitter
Whatsapp
Facebook
Flipboard

🕵️ CVE-2025-3615 | techjewel Fluent Forms Plugin up to 6.0.2 on WordPress form-submission.js cross site scripting


📈 80.19 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-5530 | Ninja Forms Contact Form Plugin up to 3.6.33 on WordPress Label Field cross site scripting


📈 68.59 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-25056 | Ninja Forms Contact Form Plugin up to 3.6.9 Field Label cross site scripting


📈 64.68 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-36827 | Saturday Drive Ninja Forms Contact Form Plugin up to 3.6.9 on WordPress label cross site scripting


📈 57.31 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-5005 | Autocomplete Location Field Contact Form Plugin up to 2.0 on WordPress cross site scripting


📈 44.85 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-1326 | Contact Form Plugin up to 1.2.0 on WordPress Custom Text Field cross site scripting


📈 44.85 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-4109 | Ninja Forms Contact Form Plugin up to 3.6.25 on WordPress cross site scripting


📈 44.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-3487 | Contact Form Forminator Forms Plugin up to 1.42.0 on WordPress limit cross site scripting


📈 44.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-37979 | Saturday Drive Ninja Forms Contact Form Plugin up to 3.6.25 on WordPress cross site scripting (Patch 173983 / EDB-51644)


📈 44.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-25066 | Ninja Forms Contact Form Plugin up to 3.6.9 on WordPress Data Import cross site scripting


📈 44.07 Punkte
🕵️ Sicherheitslücken

🕵️ Ninja Forms Contact Form up to 3.4.33 on WordPress Drag/Drop Form Builder wp_ajax_nf_oauth_disconnect cross-site request forgery


📈 42.9 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6957 | Fluent Forms Plugin up to 5.1.9 on WordPress cross site scripting


📈 41.99 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6953 | PDF Generator for Fluent Forms Plugin up to 1.1.7 on WordPress cross site scripting


📈 41.99 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-1647 | FormCraft Plugin up to 1.2.5 on WordPress Field Label cross site scripting


📈 41.51 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2580 | Bit Contact Form Form Plugin up to 2.18.3 on WordPress SVG File Upload cross site scripting


📈 40.35 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-23179 | Contact Form & Lead Form Elementor Builder Plugin up to 1.6.x on WordPress cross site scripting


📈 40.35 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-5337 | Contact Form Form for All Plugin up to 1.2 on WordPress Shortcode cross site scripting


📈 40.35 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-22295 | Tripetto Form Builder Plugin for Contact Forms, Surveys and Quizzes cross site scripting


📈 40.16 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-24708 | CRM Perks WP Dynamics CRM for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Plugin cross site scripting


📈 40.16 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2021-34620 | WP Fluent Forms Plugin up to 3.6.66 on WordPress cross-site request forgery


📈 39.09 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-17599 | quiz-master-next Plugin up to 6.3.4 on WordPress quiz-options-page.php quiz_id Reflected cross site scripting (Issue 795)


📈 38.83 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2328 | Contact Form Drag and Drop Multiple File Upload for Contact Form 7 Plugin Path Validation dnd_remove_uploaded_files unrestricted upload


📈 38.21 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2485 | Contact Form Drag and Drop Multiple File Upload for Contact Form 7 Plugin dnd_upload_cf7_upload deserialization


📈 38.21 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2013-10020 | MMDeveloper A Forms Plugin up to 1.4.2 on WordPress a-forms.php cross site scripting


📈 37.97 Punkte
🕵️ Sicherheitslücken

🕵️ mtouch-quiz Plugin up to 3.1.2 on WordPress Quiz Name cross site scripting


📈 37.87 Punkte
🕵️ Sicherheitslücken

🕵️ mtouch-quiz Plugin up to 3.1.2 on WordPress Quiz Manage cross site scripting


📈 37.87 Punkte
🕵️ Sicherheitslücken

⚠️ [webapps] - WordPress Plugin Contact Form Manager - Cross-Site Request Forgery / Cross-Site Scripting


📈 37.76 Punkte
⚠️ PoC

🕵️ CVE-2023-5468 | Slick Contact Forms Plugin up to 1.3.7 on WordPress Shortcode cross site scripting


📈 37.29 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-28781 | Cimatti Contact Forms Plugin up to 1.5.4 on WordPress cross site scripting


📈 37.29 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-1530 | tripetto Form Builder Plugin for Contact Forms, Surveys and Quizzes cross-site request forgery


📈 37.26 Punkte
🕵️ Sicherheitslücken

🕵️ contact-form-plugin Plugin up to 3.3.4 on WordPress cross site scripting


📈 36.71 Punkte
🕵️ Sicherheitslücken

🕵️ contact-form-plugin Plugin up to 4.0.1 on WordPress cross site scripting


📈 36.71 Punkte
🕵️ Sicherheitslücken

🕵️ contact-form-plugin Plugin up to 4.0.5 on WordPress cross site scripting


📈 36.71 Punkte
🕵️ Sicherheitslücken

🕵️ contact-form-plugin Plugin up to 3.51 on WordPress cross site scripting


📈 36.71 Punkte
🕵️ Sicherheitslücken

🕵️ contact-form-plugin Plugin up to 3.95 on WordPress cross site scripting


📈 36.71 Punkte
🕵️ Sicherheitslücken