Emarket-design Simple Contact Form Plugin For Wordpress – Wp Easy Contact

3 CVEs affecting Emarket-design Simple Contact Form Plugin For Wordpress – Wp Easy Contact. Latest disclosed: 2025-08-06. Critical: 0, High: 1.

Top CVEs affecting Emarket-design Simple Contact Form Plugin For Wordpress – Wp Easy Contact
CVESeverityScorePublishedSummary
CVE-2025-8420High8.12025-08-06Multiple plugins for WordPress by emarket-design with the 'emd-form-builder-lite' package are vulnerable to Remote Code Execution in various versions via the e…
CVE-2025-8315Medium6.42025-08-05The WP Easy Contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘noaccess_msg’ parameter in all versions up to, and including, 4…
CVE-2025-5539Medium6.42025-06-04The Simple Contact Form Plugin for WordPress – WP Easy Contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emd_mb_meta'…