Vulnerabilities > Cformsii Project > Cformsii > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-08-22 CVE-2015-9333 SQL Injection vulnerability in Cformsii Project Cformsii
The cforms2 plugin before 14.6.10 for WordPress has SQL injection.
network
low complexity
cformsii-project CWE-89
critical
 9.8
9.8
2019-08-22 CVE-2017-18570 SQL Injection vulnerability in Cformsii Project Cformsii
The cforms2 plugin before 14.13 for WordPress has SQL injection in the tracking DB GUI via Delete Entries or Download Entries.
network
low complexity
cformsii-project CWE-89
critical
 9.8
9.8