cleantalk
Vulnerabilities and Security Researches

Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder, CVE-2024-37920

CVE, Research URL

CVE-2024-37920

Home page URL

Security reports for Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder

Application

Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder

Published on
Jul 20, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Repute InfoSystems ARForms Form Builder allows Reflected XSS.This issue affects ARForms Form Builder: from n/a through 1.6.7.
Affected versions
Min -, max 1.6.8.
Status
vulnerable
Previous vulnerability researches
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2024-10504) , May 17, 2025
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2024-37920) , Jul 12, 2024
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2024-31272) , Jun 07, 2024
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2022-45838) , Jun 07, 2024
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2023-6828) , Jun 07, 2024
New vulnerability
Posts per Cat [Unmaintained] (CVE-2025-4169) , May 17, 2025
HD Quiz (CVE-2024-13383) , May 17, 2025
AffiliateImporterEb (CVE-2024-12733) , May 17, 2025
AffiliateImporterEb (CVE-2024-12732) , May 17, 2025
Broadstreet (CVE-2025-48113) , May 17, 2025