Vulnerabilities > Captainform > Captainform > 2.2.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-15 | CVE-2023-49170 | Cross-site Scripting vulnerability in Captainform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in captainform Forms by CaptainForm – Form Builder for WordPress allows Reflected XSS.This issue affects Forms by CaptainForm – Form Builder for WordPress: from n/a through 2.5.3. | 6.1 |
| 2023-02-28 | CVE-2022-43459 | Cross-Site Request Forgery (CSRF) vulnerability in Captainform Cross-Site Request Forgery (CSRF) vulnerability in Forms by CaptainForm – Form Builder for WordPress plugin <= 2.5.3 versions. | 8.8 |