Vulnerabilities > Accesspressthemes > Form Store TO DB

DATE CVE VULNERABILITY TITLE RISK
2022-02-21 CVE-2021-24867 Hidden Functionality vulnerability in Accesspressthemes products
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised.
network
low complexity
accesspressthemes CWE-912
7.5
2022-02-14 CVE-2021-25107 Cross-site Scripting vulnerability in Accesspressthemes Form Store to DB
The Form Store to DB WordPress plugin before 1.1.1 does not sanitise and escape parameter keys before outputting it back in the created entry, allowing unauthenticated attacker to perform Cross-Site Scripting attacks against admin
4.3