cleantalk
Vulnerabilities and Security Researches

Calculated Fields Form, CVE-2020-7228

CVE, Research URL

CVE-2020-7228

Home page URL

Security reports for Calculated Fields Form

Application

Calculated Fields Form

Published on
Jan 22, 2020
Research Description
The Calculated Fields Form plugin through 1.0.353 for WordPress suffers from multiple Stored XSS vulnerabilities present in the input forms. These can be exploited by an authenticated user.
Affected versions
max 1.0.12.
Status
vulnerable
Previous vulnerability researches
Calculated Fields Form (CVE-2026-25368) , Feb 27, 2026
Calculated Fields Form (CVE-2024-13382) , May 16, 2025
Calculated Fields Form (CVE-2024-9940) , Oct 18, 2024
Calculated Fields Form (CVE-2024-12601) , Dec 19, 2024
Calculated Fields Form (CVE-2024-12273) , May 01, 2025
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System – Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026