Raiserweb Competition_form

2 CVEs affecting Raiserweb Competition_form. Latest disclosed: 2025-05-15. Critical: 0, High: 1.

Top CVEs affecting Raiserweb Competition_form
CVESeverityScorePublishedSummary
CVE-2024-12749High7.12025-01-29The Competition Form WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-…
CVE-2024-12750Medium4.32025-05-15The Competition Form WordPress plugin through 2.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in…