Reputeinfosystems Arforms

12 CVEs affecting Reputeinfosystems Arforms. Latest disclosed: 2025-05-15. Critical: 1, High: 7.

Top CVEs affecting Reputeinfosystems Arforms
CVESeverityScorePublishedSummary
CVE-2024-4620Critical9.82024-06-07The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.6 allows unauthenticated users to modify uploaded files in such a way that PHP co…
CVE-2024-32706High8.52024-04-24Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in reputeinfosystems ARForms arforms.This issue affects ARFo…
CVE-2024-54216High7.72024-12-06Path Traversal: '.../...//' vulnerability in reputeinfosystems ARForms arforms allows Path Traversal.This issue affects ARForms: from n/a through <= 6.4.1.
CVE-2024-32703High7.72024-06-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: f…
CVE-2019-16902High7.52019-09-27In the ARforms plugin 3.7.1 for WordPress, arf_delete_file in arformcontroller.php allows unauthenticated deletion of an arbitrary file by supplying the full p…
CVE-2024-32705High7.12024-06-09Missing Authorization vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4.
CVE-2024-32704High7.12024-06-09Missing Authorization vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4.
CVE-2024-32702High7.12024-04-24Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in reputeinfosystems ARForms arforms.This issue affects ARFo…
CVE-2024-0427Medium6.32024-06-12The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.4.1 does not properly escape user-controlled input when it is reflected in some o…
CVE-2024-10504Medium5.42025-05-15The Contact Form, Survey, Quiz & Popup Form Builder WordPress plugin before 1.7.1 does not sanitise and escape some parameters when outputting them in the pag…
CVE-2024-54217Medium5.42024-12-09Missing Authorization vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4.1.
CVE-2024-4621Medium4.82024-06-07The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.6 does not sanitise and escape some of its settings, which could allow high privi…