Bitapps Bit_form
6 CVEs affecting Bitapps Bit_form. Latest disclosed: 2025-07-02. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-43249 | Critical | 9.9 | 2024-08-19 | Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form Pro allows Command Injection.This issue affects Bit Form Pro: from n/a throu… |
CVE-2022-4774 | Critical | 9.8 | 2023-05-15 | The Bit Form WordPress plugin before 1.9 does not validate the file types uploaded via it's file upload form field, allowing unauthenticated users to upload ar… |
CVE-2024-43248 | High | 8.6 | 2024-08-19 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Bit Apps Bit Form Pro allows File Manipulation.This issue affec… |
CVE-2024-43250 | High | 7.1 | 2024-08-19 | Incorrect Authorization vulnerability in Bit Apps Bit Form Pro bitformpro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bi… |
CVE-2024-43251 | Medium | 6.5 | 2024-08-26 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Bit Apps Bit Form Pro.This issue affects Bit Form Pro: from n/a through 2.6.4. |
CVE-2024-13451 | Medium | 5.3 | 2025-07-02 | The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable… |