Emarket-design Simple Contact Form Plugin For Wordpress – Wp Easy Contact
3 CVEs affecting Emarket-design Simple Contact Form Plugin For Wordpress – Wp Easy Contact. Latest disclosed: 2025-08-06. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-8420 | High | 8.1 | 2025-08-06 | Multiple plugins for WordPress by emarket-design with the 'emd-form-builder-lite' package are vulnerable to Remote Code Execution in various versions via the e… |
CVE-2025-8315 | Medium | 6.4 | 2025-08-05 | The WP Easy Contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccess_msg’ parameter in all versions up to, and including, 4… |
CVE-2025-5539 | Medium | 6.4 | 2025-06-04 | The Simple Contact Form Plugin for WordPress – WP Easy Contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emd_mb_meta'… |