Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder, 81bb3d501efb863ea3fb621e320e351b2b1136bb

CVE, Research URL: 81bb3d501efb863ea3fb621e320e351b2b1136bb
Home page URL: Security reports for Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder
Application: Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder
Published on: Sep 07, 2023
Research Description: Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder [form-maker] < 1.15.20 WordPress Form Maker by 10Web Plugin < 1.15.20 is vulnerable to Arbitrary File Upload Update the WordPress Form Maker by 10Web plugin to the latest available version (at least 1.15.20). An unknown person discovered and reported this Arbitrary File Upload vulnerability in WordPress Form Maker by 10Web Plugin. This could allow a malicious actor to upload any type of file to your website. This can include backdoors which are then executed to gain further access to your website. This vulnerability has been fixed in version 1.15.20.
Affected versions: max 1.15.20.
Status: vulnerable

Form Maker by 10Web &#8211; Mobile-Friendly Drag &amp; Drop Contact Form Builder, 81bb3d501efb863ea3fb621e320e351b2b1136bb