Vulnerabilities > CVE-2023-31212 - Unspecified vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
crmperks
critical

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks Database for Contact Form 7, WPforms, Elementor forms contact-form-entries allows SQL Injection.This issue affects Database for Contact Form 7, WPforms, Elementor forms: from n/a through 1.3.0.

Vulnerable Configurations

Part Description Count
Application
Crmperks
31