VYPR

Smart Forms

by Rednao

CVEs (4)

  • CVE-2023-49856HigDec 9, 2024
    risk 0.53cvss 8.1epss 0.01

    Missing Authorization vulnerability in EDGARROJAS Smart Forms smart-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart Forms: from n/a through <= 2.6.84.

  • CVE-2026-2022MedFeb 14, 2026
    risk 0.28cvss 4.3epss 0.00

    The Smart Forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'rednao_smart_forms_get_campaigns' AJAX action in all versions up to, and including, 2.6.99. This makes it possible for authenticated attackers, with…

  • CVE-2024-33593MedApr 29, 2024
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in RedNao Smart Forms.This issue affects Smart Forms: from n/a through 2.6.91.

  • CVE-2019-5924Mar 12, 2019
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in Smart Forms 2.6.15 and earlier allows remote attackers to hijack the authentication of administrators via a specially crafted page.