Wpvibes Form_vibes
3 CVEs affecting Wpvibes Form_vibes. Latest disclosed: 2024-09-05. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-5325 | High | 8.8 | 2024-07-12 | The Form Vibes plugin for WordPress is vulnerable to SQL Injection via the ‘fv_export_data’ parameter in all versions up to, and including, 1.4.10 due to insuf… |
CVE-2022-3764 | High | 7.2 | 2024-01-16 | The plugin does not filter the "delete_entries" parameter from user requests, leading to an SQL Injection vulnerability. |
CVE-2024-5309 | Medium | 5.4 | 2024-09-05 | The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capabil… |