Unrated severityNVD Advisory· Published Jul 9, 2024· Updated Apr 28, 2026
WordPress Ninja Forms plugin <= 3.8.4 - Subscriber+ Arbitrary Shortcode Execution vulnerability
CVE-2024-37934
Description
Improper Control of Generation of Code ('Code Injection') vulnerability in Saturday Drive Ninja Forms allows Code Injection.This issue affects Ninja Forms: from n/a through 3.8.4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=3.8.4+ 1 more
- (no CPE)range: <=3.8.4
- (no CPE)range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.