Crmperks Contact Form Entries
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Crmperks Contact Form Entries.
By the Year
In 2026 there have been 0 vulnerabilities in Crmperks Contact Form Entries. Contact Form Entries did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 6.10 |
It may take a day or so for new Contact Form Entries vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Crmperks Contact Form Entries Security Vulnerabilities
The Contact Form Entries WordPress plugin before 1.1.7 does not validate, sanitise and escape the IP address retrieved via headers such as CLIENT-IP and X-FORWARDED-FOR
CVE-2021-25080
6.1 - Medium
- January 24, 2022
The Contact Form Entries WordPress plugin before 1.1.7 does not validate, sanitise and escape the IP address retrieved via headers such as CLIENT-IP and X-FORWARDED-FOR, allowing unauthenticated attackers to perform Cross-Site Scripting attacks against logged in admins viewing the created entry
XSS
The Contact Form Entries WordPress plugin before 1.2.4 does not sanitise and escape various parameters
CVE-2021-25079
6.1 - Medium
- January 24, 2022
The Contact Form Entries WordPress plugin before 1.2.4 does not sanitise and escape various parameters, such as form_id, status, end_date, order, orderby and search before outputting them back in the admin page
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Crmperks Contact Form Entries or by Crmperks? Click the Watch button to subscribe.
