funnelforms - CVE CyberSecurity Database News

CVE-2023-5417 - Exploiting Improper Capability Checks in Funnelforms Free WordPress Plugin

If you run a WordPress website and use the popular Funnelforms Free plugin, you need to read this: a vulnerability has been found in versions

Nov 22, 2023 WordPress funnelforms Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free

CVE-2023-5419 - How Funnelforms Free Plugin for WordPress Lets Subscribers Send Emails Anywhere

WordPress powers more than 40% of the web, but plugins like Funnelforms Free can put your site at risk. CVE-2023-5419 is one of those vulnerabilities

Nov 22, 2023 WordPress funnelforms Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free

CVE-2023-5411 - Exploiting the Funnelforms Free Plugin’s Unchecked Permissions (Up to v3.4)

The WordPress ecosystem is fantastic, but sometimes plugins introduce serious security risks. One such case is addressed by CVE-2023-5411, which affects the popular Funnelforms Free

Nov 22, 2023 CSRF WordPress Exploit funnelforms Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free

CVE-2023-5382 - How a Simple CSRF Bug Could Let Attackers Delete Your WordPress Posts via Funnelforms Free

--- Summary: A Cross-Site Request Forgery (CSRF) vulnerability has been discovered in the popular Funnelforms Free WordPress plugin, affecting versions up to and including 3.

Nov 22, 2023 WordPress PHP funnelforms Interactive Contact Form and Multi Step Form Builder with Drag & Drop Editor – Funnelforms Free

CVE-2023-5385 - How a WordPress Plugin Let Low-Permission Users Copy Any Post (Funnelforms Free <= 3.4)

Date: June 2024 Severity: Medium Exploitability: Authenticated (Subscriber+) >The Funnelforms Free plugin for WordPress, up to version 3.4, contains a security vulnerability (CVE-2023-5385)