Vulnerabilities > Easyregistrationforms

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-23	CVE-2023-5134	Unspecified vulnerability in Easyregistrationforms Easy Registration Forms The Easy Registration Forms for WordPress is vulnerable to Information Disclosure via the 'erforms_user_meta' shortcode in versions up to, and including, 2.1.1 due to insufficient controls on the information retrievable via the shortcode. network low complexity easyregistrationforms	4.3
2021-11-19	CVE-2021-39353	Cross-Site Request Forgery (CSRF) vulnerability in Easyregistrationforms Easy Registration Forms The Easy Registration Forms WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation via the ajax_add_form function found in the ~/includes/class-form.php file which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 2.1.1. network easyregistrationforms CWE-352	6.8
2020-11-04	CVE-2020-22275	Injection vulnerability in Easyregistrationforms Easy Registration Forms 2.0.6 Easy Registration Forms (ER Forms) Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. network easyregistrationforms CWE-74	6.8

Vulnerabilities > Easyregistrationforms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Easyregistrationforms"}]}