VYPR

WPForms Contact Form

by WordPress

CVEs (2)

  • CVE-2020-10385MedMar 24, 2020
    risk 0.38cvss 5.4epss 0.04

    A stored cross-site scripting (XSS) vulnerability exists in the WPForms Contact Form (aka wpforms-lite) plugin before 1.5.9 for WordPress.

  • CVE-2024-56276MedJan 7, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form by WPForms: from n/a through <= 1.9.2.2.