Vulnerabilities > Subtlewebinc > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-21 | CVE-2022-0591 | Server-Side Request Forgery (SSRF) vulnerability in Subtlewebinc Formcraft3 The FormCraft WordPress plugin before 3.8.28 does not validate the URL parameter in the formcraft3_get AJAX action, leading to SSRF issues exploitable by unauthenticated users | 6.4 |