Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
supsystic

contact-form-by-supsystic

4 Versions 4 CVEs

Versions

1.7.15

SEMANTIC 1 CVE

1.7.29

SEMANTIC 2 CVEs

1.7.27

SEMANTIC 1 CVE

1.7.28

SEMANTIC 2 CVEs

Recent CVEs

CVE-2024-48046

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Supsystic Contact Form by Supsystic allows Stored XSS.This issue affects Contact Form by Supsystic: from n/a through 1.7.28.

MEDIUM Oct 17, 2024

CVE-2024-48042

Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Contact Form by Supsystic allows Command Injection.This issue affects Contact Form by Supsystic: from n/a through 1.7.28.

CRITICAL Oct 16, 2024

CVE-2023-45068

Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Contact Form by Supsystic plugin <= 1.7.27 versions.

MEDIUM Oct 12, 2023

CVE-2021-24276

The Contact Form by Supsystic WordPress plugin before 1.7.15 did not sanitise the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue

UNKNOWN May 05, 2021