Vulnerability history

WordPress Bit Form plugin 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection vulnerability

WordPress Bit Form - Contact Form Plugin plugin <= 2.21.6 - Missing Authorization to Unauthenticated Workflow Replay vulnerability

Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Sensitive Information Exposure vulnerability

Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Open Redirection vulnerability

Authenticated (Administrator+) Server-Side Request Forgery vulnerability

Missing Authorization to Authenticated (Subscriber+) Form Submission Disclosure vulnerability

Authenticated (Administrator+) Improper Input Validation to Arbitrary File Read vulnerability

SQL Injection vulnerability

Arbitrary File Upload vulnerability

Cross Site Scripting (XSS) vulnerability

WordPress BitForm plugin 2.0 - 2.13.9 - Authenticated (Administrator+) Arbitrary File Read And Deletion vulnerability

WordPress BitForm plugin 2.0 - 2.13.9 - Authenticated (Administrator+) Arbitrary JavaScript File Uploads vulnerability

WordPress BitForm plugin 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection via getLogHistory Function vulnerability

WordPress BitForm plugin 2.0 - 2.13.4 - Authenticater (Administrator+) Arbitrary File Deletion vulnerability

Authenticated (Administrator+) Arbitrary File Upload vulnerability

Unauthenticated Insecure Direct Object Reference to Form Submission Alteration vulnerability

Admin+ Stored XSS vulnerability

RCE via Unauthenticated Arbitrary File Upload vulnerability