Vulnerabilities > Themefic

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-14	CVE-2023-2803	Unspecified vulnerability in Themefic Ultimate Addons for Contact Form 7 The Ultimate Addons for Contact Form 7 WordPress plugin before 3.1.29 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. network low complexity themefic	6.1
2023-06-19	CVE-2022-47586	Unspecified vulnerability in Themefic Ultimate Addons for Contact Form 7 Unauth. network low complexity themefic critical	9.8
2023-06-09	CVE-2023-1615	Unspecified vulnerability in Themefic Ultimate Addons for Contact Form 7 The Ultimate Addons for Contact Form 7 plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in versions up to, and including, 3.1.23. network low complexity themefic	6.5

Vulnerabilities > Themefic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Themefic"}]}