Metform Elementor Contact Form Builder CVEs and Security Vulnerabilities

Filtered by vendor Wpmet Subscriptions

Filtered by product Metform Elementor Contact Form Builder Subscriptions

Switch to Advanced Search (Beta)

Total 21 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-0689	1 Wpmet	1 Metform Elementor Contact Form Builder	2024-11-21	4.3 Medium
The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mf_first_name' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about arbitrary form submissions, including the submitter's first name.

« first previous Page 2 of 2.