Filter
Ninja FormsWordPress Ninja Forms – The Contact Form Builder That Grows With You plugin <= 3.8.16 - Cross Site Scripting (XSS) vulnerability
5.9
First published (updated )
Ninja FormsWordPress Ninja Forms – The Contact Form Builder That Grows With You plugin <= 3.8.16 - Cross Site Scripting (XSS) vulnerability
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ninja FormsWordPress Ninja Forms plugin <= 3.8.6 - Cross Site Request Forgery (CSRF) vulnerability
8.8
First published (updated )
Ninja FormsNinja Forms < 3.6.26 - Admin+ Stored HTML Injection
4.8
First published (updated )
Ninja FormsNinja Forms 3.8.6-3.8.10 - Reflected XSS
6.1
EPSS
0.04%
First published (updated )
Ninja FormsNinja Forms Contact Form <= 3.8.15 - Reflected Self-Based Cross-Site Scripting via Referer
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ninja FormsNinja Forms File Uploads <= 3.3.16 - Unauthenticated Stored Cross-Site Scripting via File Upload
7.2
First published (updated )
Ninja FormsWordPress Ninja Forms Plugin <= 3.6.25 is vulnerable to Cross Site Scripting (XSS)
7.1
First published (updated )
Ninja FormsWordPress Ninja Forms plugin <= 3.8.11 - Cross Site Scripting (XSS) vulnerability
5.9
First published (updated )
Ninja FormsNinja Forms <= 3.5.7 Unprotected REST-API to Email Injection
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ninja FormsNinja Forms <= 3.5.7 Sensitive Information Disclosure
6.5
First published (updated )
Ninja FormsWordPress Ninja Forms Contact Form plugin <= 3.6.9 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
4.8
First published (updated )
Ninja FormsWordPress Ninja Forms plugin <= 3.8.4 - Subscriber+ Arbitrary Shortcode Execution vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ninja FormsAn open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers to …
6.1
First published (updated )
Ninja FormsThe Ninja Forms plugin before 3.3.14.1 for WordPress allows CSV injection.
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ninja FormsThe Ninja Forms plugin before 3.4.28 for WordPress lacks escaping for submissions-table fields.
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.