Vulnerabilities > Accesspressthemes > Form Store TO DB > 1.0.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-21 | CVE-2021-24867 | Hidden Functionality vulnerability in Accesspressthemes products Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. | 7.5 |
| 2022-02-14 | CVE-2021-25107 | Cross-site Scripting vulnerability in Accesspressthemes Form Store to DB The Form Store to DB WordPress plugin before 1.1.1 does not sanitise and escape parameter keys before outputting it back in the created entry, allowing unauthenticated attacker to perform Cross-Site Scripting attacks against admin | 4.3 |