Find out about vulnerable plugins in your websites for free.
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Asif Nawaz Minhas (Patchstack Alliance) in WordPress Ninja Forms Contact Form plugin (versions <= 3.6.9).
Update the WordPress Ninja Forms Contact Form plugin to the latest available version (at least 3.6.10).
Unauthenticated PHP Object Injection vulnerability
9.8
15.06.2022
Authenticated Stored CrossSite Scripting (XSS) vulnerability
4.8
13.06.2022
Authenticated Stored CrossSite Scripting (XSS) vulnerability
4.8
10.06.2022
Unauthenticated Email Address Disclosure vulnerability
3.7
22.03.2022
SQL Injection (SQLi) vulnerability
4.7
26.10.2021