Vulnerabilities > Advancedformintegration

DATE CVE VULNERABILITY TITLE RISK
2024-11-13 CVE-2024-10877 Cross-site Scripting vulnerability in Advancedformintegration Advanced Form Integration
The AFI – The Easiest Integration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.92.0.
network
low complexity
advancedformintegration CWE-79
6.1
2024-08-26 CVE-2024-43340 Cross-Site Request Forgery (CSRF) vulnerability in Advancedformintegration Advanced Form Integration
Cross-Site Request Forgery (CSRF) vulnerability in Nasirahmed Advanced Form Integration.This issue affects Advanced Form Integration: from n/a through 1.89.4.
network
low complexity
advancedformintegration CWE-352
4.3
2023-12-28 CVE-2023-50853 Unspecified vulnerability in Advancedformintegration Advanced Form Integration
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nasirahmed Advanced Form Integration – Connect WooCommerce and Contact Form 7 to Google Sheets and other platforms.This issue affects Advanced Form Integration – Connect WooCommerce and Contact Form 7 to Google Sheets and other platforms: from n/a through 1.75.0.
network
low complexity
advancedformintegration
7.2
2023-03-23 CVE-2022-47173 Unspecified vulnerability in Advancedformintegration Advanced Form Integration
Auth.
network
low complexity
advancedformintegration
4.8