VYPR

Gb Forms Db

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-5392CriJul 11, 2025
    risk 0.64cvss 9.8epss 0.01

    The GB Forms DB plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.0.2 via the gbfdb_talk_to_front() function. This is due to the function accepting user input and then passing that through call_user_func(). This makes it possible…