Vulnerabilidades em techjewel
43 resultadosCVE-2024-6521MEDIUMContact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.19 - Authenticated (Administrator+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-6518MEDIUMContact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.19 - Authenticated (Administrator+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-2231HIGHFluent Booking <= 2.0.01 - Unauthenticated Stored Cross-Site Scripting via Multiple ParametersEPSS 0.3%CVE-2024-6520MEDIUMContact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.19 - Authenticated (Administrator+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-2940HIGHNinja Tables – Easy Data Table Builder <= 5.0.18 - Unauthenticated Server-Side Request ForgeryEPSS 0.3%CVE-2026-0996MEDIUMFluent Forms <= 6.1.14 - Authenticated (Subscriber+) Stored Cross-Site Scripting via AI Form Builder ModuleEPSS 0.3%CVE-2024-13666MEDIUMFluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder <= 5.2.12 - IP-SpoofingEPSS 0.3%CVE-2026-2365HIGHFluent Forms Pro <= 6.1.17 - Unauthenticated Stored Cross-Site Scripting via Draft Form SubmissionEPSS 0.3%CVE-2025-3615MEDIUMFluent Forms <= 6.0.2 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-2772MEDIUMContact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.13 - Authenticated (Subscriber+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-12935MEDIUMFluentCRM - Marketing Automation For WordPress <= 2.9.84 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'fluentcrm_content' ShortcodeEPSS 0.3%CVE-2025-13748MEDIUMFluent Forms <= 6.1.7 - Unauthenticated Insecure Direct Object Reference to Payment Status Tampering via submission_idEPSS 0.3%CVE-2026-2306MEDIUMNinja Tables <= 5.2.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Table CreationEPSS 0.2%CVE-2026-5395HIGHFluent Forms <= 6.2.0 - Authenticated (Subscriber+) Authorization Bypass via 'table' ParameterEPSS 0.2%CVE-2026-0632MEDIUMFluent Forms Pro Add On Pack <= 6.1.12 - Authenticated (Subscriber+) Server-Side Request Forgery via 'saveDataSource'EPSS 0.2%CVE-2026-2899MEDIUMFluent Forms Pro Add On Pack <= 6.1.17 - Missing Authorization to Unauthenticated Arbitrary Attachment DeletionEPSS 0.2%CVE-2026-5396HIGHFluent Forms <= 6.1.21 - Authenticated (Subscriber+) Authorization Bypass via 'form_id' ParameterEPSS 0.2%CVE-2026-6828MEDIUMFluent Forms <= 6.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'permission_message' Shortcode AttributeEPSS 0.2%CVE-2026-8977MEDIUMWP GDPR Cookie Consent <= 1.0.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'ninja_gdpr_ajax_actions' AJAX ActionEPSS 0.2%CVE-2025-13722MEDIUMFluent Forms <= 6.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Form Creation via AI BuilderEPSS 0.2%