Contact Form
Approved changes feed: RSS · Atom
cpe:2.3:a:ghozylab:contact_form:*:*:*:*:lite:wordpress:*:*
part: a version: * update: *
| Vendor | Ghozylab (33c2dab5-504d-5881-b929-cf857c38db21) |
|---|---|
| Product | Contact Form (b64b4da8-0f32-5624-98af-4a0948445ef6) |
| Edition | * |
| Language | * |
| Software edition | lite |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-5730 |
vulnerable | 2026-06-08 07:37:25.612429 |
Easy Contact Form Lite < 1.1.29 - Contributor+ Stored XSS
The Contact Form Plugin WordPress plugin before 1.1.29 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks.
Published: 2025-06-30T06:00:01.730Z
Updated: 2025-06-30T18:50:31.178Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-32147 |
vulnerable | 2026-06-08 06:35:32.968726 |
WordPress Contact Form Plugin plugin <= 1.1.23 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Form Plugin Team - GhozyLab Easy Contact Form Lite allows Stored XSS.This issue affects Easy Contact Form Lite : from n/a through 1.1.23.
Published: 2024-04-15T06:32:09.488Z
Updated: 2026-04-28T16:09:35.258Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.