Vulnerabilities > Formget

DATE CVE VULNERABILITY TITLE RISK
2023-09-23 CVE-2023-5125 Unspecified vulnerability in Formget Contact Form BY Formget
The Contact Form by FormGet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'formget' shortcode in versions up to, and including, 5.5.5 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
formget
5.4
2020-01-23 CVE-2014-7238 Cross-site Scripting vulnerability in Formget Contact Form Integrated With Google Maps
The WordPress plugin Contact Form Integrated With Google Maps 1.0-2.4 has Stored XSS
network
formget CWE-79
4.3
2017-10-06 CVE-2014-7240 Cross-site Scripting vulnerability in Formget Easy Contact Form Solution
Cross-site scripting (XSS) vulnerability in the Easy Contact Form Solution plugin before 1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the value parameter in a master_response action to wp-admin/admin-ajax.php.
network
formget CWE-79
4.3