Vulnerabilities > Formget
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-23 | CVE-2023-5125 | Unspecified vulnerability in Formget Contact Form BY Formget The Contact Form by FormGet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'formget' shortcode in versions up to, and including, 5.5.5 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2020-01-23 | CVE-2014-7238 | Cross-site Scripting vulnerability in Formget Contact Form Integrated With Google Maps The WordPress plugin Contact Form Integrated With Google Maps 1.0-2.4 has Stored XSS | 6.1 |
| 2017-10-06 | CVE-2014-7240 | Cross-site Scripting vulnerability in Formget Easy Contact Form Solution Cross-site scripting (XSS) vulnerability in the Easy Contact Form Solution plugin before 1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the value parameter in a master_response action to wp-admin/admin-ajax.php. | 6.1 |