Vulnerabilities > Crmperks

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-37463 Unspecified vulnerability in Crmperks CRM Perks Forms
Missing Authorization vulnerability in CRM Perks CRM Perks Forms allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects CRM Perks Forms: from n/a through 1.1.5.
network
low complexity
crmperks
critical
 9.8
9.8
2024-03-29 CVE-2024-30446 Unspecified vulnerability in Crmperks CRM Perks Forms
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks Forms allows Stored XSS.This issue affects CRM Perks Forms: from n/a through 1.1.4.
network
low complexity
crmperks
5.4
5.4
2024-03-29 CVE-2024-30498 Unspecified vulnerability in Crmperks CRM Perks Forms
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks CRM Perks Forms.This issue affects CRM Perks Forms: from n/a through 1.1.4.
network
low complexity
crmperks
critical
 10.0
10
2024-03-29 CVE-2024-30499 Unspecified vulnerability in Crmperks CRM Perks Forms
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks CRM Perks Forms.This issue affects CRM Perks Forms: from n/a through 1.1.4.
network
low complexity
crmperks
8.8
8.8
2024-02-01 CVE-2023-51536 Unspecified vulnerability in Crmperks CRM Perks Forms 1.1.1
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks Forms – WordPress Form Builder allows Stored XSS.This issue affects CRM Perks Forms – WordPress Form Builder: from n/a through 1.1.2.
network
low complexity
crmperks
4.8
4.8
2024-01-31 CVE-2024-1069 Unrestricted Upload of File with Dangerous Type vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms
The Contact Form Entries plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'view_page' function in versions up to, and including, 1.3.2.
network
low complexity
crmperks CWE-434
7.2
7.2
2024-01-16 CVE-2022-3604 Improper Neutralization of Formula Elements in a CSV File vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms
The Contact Form Entries WordPress plugin before 1.3.0 does not validate data when its output in a CSV file, which could lead to CSV injection.
local
low complexity
crmperks CWE-1236
7.8
7.8
2023-12-29 CVE-2023-31095 Unspecified vulnerability in Crmperks Database for Contact Form 7, Wpforms, Elementor Forms
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.2.8.
network
low complexity
crmperks
6.1
6.1
2023-12-19 CVE-2023-37982 Open Redirect vulnerability in Crmperks Integration for Salesforce and Contact Form 7, Wpforms, Elementor, Ninja Forms 1.3.3
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.3.3.
network
low complexity
crmperks CWE-601
6.1
6.1
2023-12-19 CVE-2023-38478 Unspecified vulnerability in Crmperks Integration for Woocommerce and Quickbooks 1.2.3
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for WooCommerce and QuickBooks.This issue affects Integration for WooCommerce and QuickBooks: from n/a through 1.2.3.
network
low complexity
crmperks
6.1
6.1