Form Maker by 10Web
10Web
Developer
1.15.37
Latest version
40,000
Installations
No date
Last updated
Vulnerability history
0 present
32 fixed
8 Mitigation rules
- Unauthenticated Stored Cross-Site Scripting via Hidden Field vulnerability<= 1.15.35Feb 6, 2026
- Unauthenticated Stored Cross-Site Scripting via SVG file vulnerability<= 1.15.35Feb 6, 2026
- Admin+ Stored XSS vulnerability< 1.15.31Dec 31, 2025
- Admin+ Stored XSS via Theme Title vulnerability< 1.15.33May 27, 2025
- Cross Site Scripting (XSS) Vulnerability<= 1.15.33May 19, 2025
- Admin+ Stored XSS vulnerability< 1.15.32Apr 16, 2025
- Admin+ Stored XSS vulnerability< 1.15.30Mar 24, 2025
- Admin+ Stored XSS vulnerability< 1.15.33Feb 24, 2025
- Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library<= 1.15.27Dec 3, 2024
- Reflected Cross-Site Scripting via add_query_arg Parameter vulnerability<= 1.15.30Nov 11, 2024
- Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability<= 1.15.27Sep 26, 2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 1.15.26Aug 9, 2024
- Admin+ Stored XSS vulnerability< 1.15.26Jul 1, 2024
- Cross Site Scripting (XSS) vulnerability<= 1.15.24May 7, 2024
- Authenticated (Subscriber+) Stored Self-Based Cross-Site Scripting vulnerability<= 1.15.24Apr 29, 2024
- Cross Site Scripting (XSS) vulnerability<= 1.15.23Apr 15, 2024
- Sensitive Information Exposure vulnerability<= 1.15.22Mar 25, 2024
- Cross-Site Request Forgery to Limited Code Execution via Execute vulnerability<= 1.15.21Jan 29, 2024
- Captcha Bypass Vulnerability vulnerability<= 1.15.20Nov 23, 2023
- Cross Site Scripting (XSS) vulnerability<= 1.15.18Oct 3, 2023
- Reflected Cross Site Scripting (XSS) vulnerability<= 1.15.18Oct 3, 2023
- Unauthenticated Arbitrary File Upload Vulnerability< 1.15.20Sep 7, 2023
- Authenticated SQL Injection (SQLi) vulnerability<= 1.15.5Oct 3, 2022
- Stored Cross-Site Scripting (XSS) vulnerability<= 1.14.11May 9, 2022
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 1.13.59Jul 15, 2021
- Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities<= 1.13.56May 19, 2021
- Authenticated Reflected Cross-Site Scripting (XSS) vulnerability<= 1.13.56May 19, 2021
- Authenticated Reflected Cross-Site Scripting (XSS) vulnerability<= 1.13.39Jul 12, 2020
- Authenticated SQL Injection (SQLi) vulnerability<= 1.13.35May 26, 2020
- Authenticated SQL Injection (SQLi) vulnerability<= 1.13.2May 25, 2019
- Cross-Site Request Forgery (CSRF) vulnerability<= 1.13.4Apr 10, 2019
- Unspecified Cross Site Scripting<= 1.6.4Aug 1, 2014