Vulnerabilities > Kaliforms

DATE CVE VULNERABILITY TITLE RISK
2024-01-31 CVE-2024-22305 Authorization Bypass Through User-Controlled Key vulnerability in Kaliforms Kali Forms
Authorization Bypass Through User-Controlled Key vulnerability in ali Forms Contact Form builder with drag & drop for WordPress – Kali Forms.This issue affects Contact Form builder with drag & drop for WordPress – Kali Forms: from n/a through 2.3.36.
network
low complexity
kaliforms CWE-639
8.1
8.1
2023-06-07 CVE-2020-36712 Missing Authorization vulnerability in Kaliforms Kali Forms
The Kali Forms plugin for WordPress is vulnerable to Unauthenticated Arbitrary Post Deletion in versions up to, and including, 2.1.1.
network
low complexity
kaliforms CWE-862
5.3
5.3
2023-06-07 CVE-2020-36717 Cross-Site Request Forgery (CSRF) vulnerability in Kaliforms Kali Forms
The Kali Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.1.
network
low complexity
kaliforms CWE-352
8.8
8.8
2023-06-07 CVE-2020-36720 Missing Authorization vulnerability in Kaliforms Kali Forms
The Kali Forms plugin for WordPress is vulnerable to Authenticated Options Change in versions up to, and including, 2.1.1.
network
low complexity
kaliforms CWE-862
7.1
7.1