Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Incsub Subscribe
Filtered by product Forminator
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-36821 1 Incsub 1 Forminator 2023-03-21 N/A 6.1 MEDIUM
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in WPMU DEV Forminator – Contact Form, Payment Form & Custom Form Builder plugin <= 1.14.11 versions.
CVE-2021-24700 1 Incsub 1 Forminator 2021-11-24 3.5 LOW 4.8 MEDIUM
The Forminator WordPress plugin before 1.15.4 does not sanitize and escape the email field label, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed