VYPR

Gutenverse Form

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-68511MedDec 24, 2025
    risk 0.42cvss 6.5epss 0.00

    Missing Authorization vulnerability in Jegstudio Gutenverse Form gutenverse-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gutenverse Form: from n/a through <= 2.3.1.

  • CVE-2025-14984MedJan 8, 2026
    risk 0.35cvss 6.4epss 0.00

    The Gutenverse Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file upload in all versions up to, and including, 2.3.2. This is due to the plugin's framework component adding SVG to the allowed MIME types via the upload_mimes filter without…