Vulnerabilities > Accesspressthemes > Ultimate Form Builder Lite

DATE CVE VULNERABILITY TITLE RISK
2022-02-21 CVE-2021-24867 Hidden Functionality vulnerability in Accesspressthemes products
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised.
network
low complexity
accesspressthemes CWE-912
7.5
7.5
2017-10-26 CVE-2017-15919 SQL Injection vulnerability in Accesspressthemes Ultimate-Form-Builder-Lite
The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php.
network
low complexity
accesspressthemes CWE-89
7.5
7.5