WordPress Form Maker By 10web
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in WordPress Form Maker By 10web.
By the Year
In 2026 there have been 0 vulnerabilities in WordPress Form Maker By 10web. Form Maker By 10web did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 4.40 |
It may take a day or so for new Form Maker By 10web vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent WordPress Form Maker By 10web Security Vulnerabilities
Form Maker by 10Web 1.15.24 XSS via User Display Name in Contact Forms
CVE-2024-2258
4.4 - Medium
- April 27, 2024
The Form Maker by 10Web Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user's display name autofilled into forms in all versions up to, and including, 1.15.24 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for WordPress Form Maker By 10web or by WordPress? Click the Watch button to subscribe.
