Description

WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder version 1.5.3 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.5.5 or latest

References

https://plugins.svn.wordpress.org/weforms/trunk/readme.txt

Related Vulnerabilities

MySQL CVE-2016-5624 Vulnerability (CVE-2016-5624)

Collabtive Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2015-0258)

WordPress Plugin WPML Translation Management PHP Object Injection (2.4.1)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33328)

e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-10378)

Severity

High

Tags

Missing Update