Vulnerabilities and security researches forpiotnetforms piotnetforms

Jun 07, 2024

CVE, Research URL: CVE-2023-51412
Home page URL: Security reports for Piotnet Forms
Application: Piotnet Forms
Date: Dec 29, 2023
Research Description: Unrestricted Upload of File with Dangerous Type vulnerability in Piotnet Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.25.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2023-6220
Home page URL: Security reports for Piotnet Forms
Application: Piotnet Forms
Date: Jan 11, 2024
Research Description: The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'piotnetforms_ajax_form_builder' function in versions up to, and including, 1.0.26. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
Affected versions: Min -, max -.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2023-51413
Home page URL: Security reports for Piotnet Forms
Application: Piotnet Forms
Date: Jun 12, 2024
Research Description: Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.29.
Affected versions: Min -, max -.
Status: vulnerable

Apr 03, 2025

CVE, Research URL: CVE-2025-31793
Home page URL: Security reports for Piotnet Forms
Application: Piotnet Forms
Date: Apr 01, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in piotnetdotcom Piotnet Forms allows Stored XSS. This issue affects Piotnet Forms: from n/a through 1.0.30.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2025-31792
Home page URL: Security reports for Piotnet Forms
Application: Piotnet Forms
Date: Apr 01, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in piotnetdotcom Piotnet Forms allows Stored XSS. This issue affects Piotnet Forms: from n/a through 1.0.30.
Affected versions: Min -, max -.
Status: vulnerable