VYPR

Mollie Forms

by Wobbie

Source repositories

CVEs (3)

  • CVE-2024-2368MedJun 5, 2024
    risk 0.21cvss 4.3epss 0.00

    The Mollie Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.13. This is due to missing or incorrect nonce validation on the duplicateForm() function. This makes it possible for unauthenticated attackers to duplicate…

  • CVE-2024-1645MedMar 11, 2024
    risk 0.21cvss 4.3epss 0.00

    The Mollie Forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the exportRegistrations function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attackers, with subscriber access or…

  • CVE-2024-1400MedMar 11, 2024
    risk 0.21cvss 4.3epss 0.00

    The Mollie Forms plugin for WordPress is vulnerable to unauthorized post or page duplication due to a missing capability check on the duplicateForm function in all versions up to, and including, 2.6.3. This makes it possible for authenticated attackers, with subscriber access or…