cleantalk
Vulnerabilities and Security Researches

Flo Forms – Easy Drag & Drop Form Builder, CVE-2023-35095

CVE, Research URL

CVE-2023-35095

Home page URL

Security reports for Flo Forms – Easy Drag & Drop Form Builder

Application

Flo Forms – Easy Drag & Drop Form Builder

Published on
Jun 20, 2023
Research Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Flothemes Flo Forms – Easy Drag & Drop Form Builder plugin <= 1.0.40 versions.
Affected versions
Min -, max 1.0.42.
Status
vulnerable
Previous vulnerability researches
Flo Forms &#8211; Easy Drag &amp; Drop Form Builder (CVE-2024-35174) , Jun 06, 2024
Flo Forms &#8211; Easy Drag &amp; Drop Form Builder (a80bef1d600c161992317c0fbd9c97ee7f053d59) , Jun 06, 2024
Flo Forms &#8211; Easy Drag &amp; Drop Form Builder (CVE-2021-4367) , Jun 06, 2024
Flo Forms &#8211; Easy Drag &amp; Drop Form Builder (CVE-2023-35095) , Jun 06, 2024
Flo Forms &#8211; Easy Drag &amp; Drop Form Builder (CVE-2023-47692) , Jun 10, 2024
New vulnerability
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025
AdminQuickbar (CVE-2025-39464) , Apr 20, 2025