VYPR

Formgent

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-10916CriOct 21, 2025
    risk 0.59cvss 9.1epss 0.00

    The FormGent WordPress plugin before 1.0.4 is vulnerable to arbitrary file deletion due to insufficient file path validation. This makes it possible for unauthenticated attackers to delete arbitrary files on the server.

  • CVE-2026-22460HigMar 5, 2026
    risk 0.56cvss 8.6epss 0.00

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wpWax FormGent formgent allows Path Traversal.This issue affects FormGent: from n/a through <= 1.7.0.