forms plugin < 3.11.1 Unauthenticated PHP Object Injection vulnerability
6 days ago
Authenticated (Contributor+) Stored CrossSite Scripting via CSTI vulnerability
26 June, 2025
Admin+ Stored XSS vulnerability
19 May, 2025
Authenticated (Contributor+) Stored CrossSite Scripting via Shortcode vulnerability
30 January, 2025
Authenticated (Subscriber+) Arbitrary Shortcode Execution vulnerability
30 December, 2024