Vulnerabilities and security researches fornew-contact-form-widget new-contact-form-widget
Direction: ascendingJun 07, 2024
Contact Form Widget – Contact Query, Contact Page, Form Maker, Query Table # CVE-2019-17072
- CVE, Research URL
- Home page URL
- Date
- Oct 10, 2019
- Research Description
- The new-contact-form-widget (aka Contact Form Widget - Contact Query, Form Maker) plugin 1.0.9 for WordPress has SQL Injection via all-query-page.php.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Contact Form Widget – Contact Query, Contact Page, Form Maker, Query Table # CVE-2024-34754
- CVE, Research URL
- Home page URL
- Date
- Jun 03, 2024
- Research Description
- Exposure of Sensitive Information to an Unauthorized Actor vulnerability in A WP Life Contact Form Widget.This issue affects Contact Form Widget: from n/a through 1.3.9.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Oct 13, 2024
Contact Form Widget – Contact Query, Contact Page, Form Maker, Query Table # CVE-2024-48037
- CVE, Research URL
- Home page URL
- Date
- Oct 17, 2024
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Contact Form Widget allows Cross Site Request Forgery.This issue affects Contact Form Widget: from n/a through 1.4.2.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
May 09, 2025
Contact Form Widget – Contact Query, Contact Page, Form Maker, Query Table # CVE-2025-47491
- CVE, Research URL
- Home page URL
- Date
- May 07, 2025
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Contact Form Widget allows Cross Site Request Forgery. This issue affects Contact Form Widget: from n/a through 1.4.6.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable