WordPress Easy Form Vulnerabilities

Wordpress Easy Form vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

18 December 2025

Access Control Vulnerability in Ays Pro Easy Form Plugin by WordPress
CVE-2025-66117
WordPressEasy Form7.5HIGH

9 December 2025

Missing Authorization Vulnerability in Easy Form Builder by hassantafreshi
CVE-2025-67577
WordPressEasy Form Builder5.3MEDIUM

21 November 2025

Stored Cross-Site Scripting in Flo Forms Plugin for WordPress
CVE-2025-13159
WordPressFlo Forms – Easy Drag ...7.1HIGH

29 October 2025

SQL Injection Vulnerability in Easy Testimonial Slider and Form Plugin for WordPress
CVE-2015-10147
WordPressEasy Testimonial Slide...4.9MEDIUM

1 October 2025

Blind Server-Side Request Forgery in Block For Mailchimp Plugin for WordPress
CVE-2025-10735
WordPressBlock For Mailchimp – ...4MEDIUM

14 August 2025

SQL Injection Vulnerability in Easy Form Builder by hassantafreshi
CVE-2025-54678
WordPressEasy Form Builder9.3CRITICAL

6 August 2025

Remote Code Execution Vulnerability in Request a Quote Form Plugin for WordPress
CVE-2025-8420
WordPressRequest A Quote Form P...8.1HIGH

5 August 2025

Stored Cross-Site Scripting in WP Easy Contact for WordPress
CVE-2025-8315
WordPressSimple Contact Form Pl...6.4MEDIUM

9 June 2025

Missing Authorization Vulnerability in Icegram Collect Plugin by Icegram
CVE-2025-47527
WordPressIcegram Collect – Easy...7.1HIGH

4 June 2025

Stored Cross-Site Scripting in WP Easy Contact Plugin for WordPress
CVE-2025-5539
WordPressSimple Contact Form Pl...6.4MEDIUM

9 May 2025

Stored Cross-Site Scripting in WPForms Plugin for WordPress
CVE-2025-3794
WordPressWPforms – Easy Form Bu...5.4MEDIUM

25 February 2025

Cross-site Scripting Vulnerability in GhozyLab Easy Contact Form Lite
CVE-2025-26962
WordPressEasy Contact Form Lite6.5MEDIUM

4 February 2025

Stored Cross-Site Scripting Vulnerability in WPForms Plugin for WordPress
CVE-2024-13403
WordPressWPforms – Easy Form Bu...5.4MEDIUM

8 January 2025

Stored Cross-Site Scripting in Easy Form Builder for WordPress
CVE-2024-12112
WordpressEasy Form Builder – Wo...6.4MEDIUM

10 December 2024

Unauthorized Data Modification in WPForms Plugin for WordPress
CVE-2024-11205
WordpressWPforms – Easy Form Bu...👾📰6.5MEDIUM

13 November 2024

WPForms Contact Forms Plugin Vulnerable to Cross-Site Request Forgery
CVE-2024-10593
WordpressWPforms – Easy Form Bu...4.3MEDIUM

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974
WordpressYasr – Yet Another Sta...6.3MEDIUM

30 July 2024

Un sanitized settings lead to stored cross-site scripting vulnerability
CVE-2024-3113
WordpressFormflow: WhatSAPp Soc...👾🟡

10 June 2024

Mailchimp Easy Forms Vulnerable to Missing Authorization
CVE-2024-35742
WordPressEasy Forms For Mailchimp7.3HIGH

4 June 2024

Insertion of Sensitive Information into Log File vulnerability
CVE-2024-25095
WordPressEasy Forms For Mailchimp7.5HIGH

15 April 2024

Stored XSS Vulnerability in Easy Contact Form Lite
CVE-2024-32147
WordPressEasy Contact Form Lite5.4MEDIUM

31 March 2024

WordPress Easy Form Builder plugin <= 3.7.4 - SQL Injection vulnerability
CVE-2024-30535
WordPressEasy Form Builder8.5HIGH

12 March 2024

Stored Cross-Site Scripting Vulnerability in weForms Plugin
CVE-2024-0386
WordpressWeforms – Easy Drag & ...EPSS 15%6.1MEDIUM

28 February 2024

Cross-Site Request Forgery Vulnerability Affects Easy PayPal & Stripe Buy Now Button Plugin for WordPress
CVE-2024-1719
WordpressContact Form 7 – Paypa...4.3MEDIUM

15 January 2024

Easy Forms for Mailchimp <= 6.8.10 - Admin+ Stored Cross-Site Scripting
CVE-2023-4925
WordpressEasy Forms For Mailchimp👾🟡4.8MEDIUM