WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder Unspecified Vulnerability (1.6.5)

Description

WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder version 1.6.5 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.6.6 or latest

References

https://wordpress.org/plugins/form-maker/changelog/

Related Vulnerabilities

MySQL CVE-2016-5630 Vulnerability (CVE-2016-5630)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1161)

Frontaccounting Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5148)

Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8109)

Liferay Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-28884)

Severity

High

Tags

Missing Update