Codepeople Calculated Fields Form

11 CVEs affecting Codepeople Calculated Fields Form. Latest disclosed: 2026-03-13. Critical: 0, High: 2.

Top CVEs affecting Codepeople Calculated Fields Form
CVESeverityScorePublishedSummary
CVE-2024-2020High7.22024-03-13The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form page href parameter in all versions up to, and includ…
CVE-2024-29759High7.12024-03-27Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodePeople Calculated Fields Form allows Reflected XSS.Th…
CVE-2026-25368Medium6.52026-02-19Missing Authorization vulnerability in codepeople Calculated Fields Form calculated-fields-form allows Exploiting Incorrectly Configured Access Control Securit…
CVE-2026-3986Medium6.42026-03-13The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form settings in all versions up to, and including, 5.4.5…
CVE-2024-0963Medium6.42024-02-02The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's CP_CALCULATED_FIELDS shortcode in all versions up…
CVE-2024-12601Medium5.32024-12-17The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 5.2.63. This is due to unlimited heigh…
CVE-2024-9940Medium5.32024-10-17The Calculated Fields Form plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 5.2.45. This is due to the plugin not pro…
CVE-2023-6446Medium4.42024-01-11The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.40 du…
CVE-2025-49291Medium4.32025-06-06Cross-Site Request Forgery (CSRF) vulnerability in codepeople Calculated Fields Form calculated-fields-form allows Cross Site Request Forgery.This issue affect…
CVE-2023-26523Medium4.32024-06-03Missing Authorization vulnerability in CodePeople Calculated Fields Form allows Functionality Misuse.This issue affects Calculated Fields Form: from n/a throug…
CVE-2023-51517Medium4.12023-12-29URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CodePeople Calculated Fields Form.This issue affects Calculated Fields Form: from n/a thro…