cleantalk
Vulnerabilities and Security Researches

Form Vibes – Database Manager for Forms, CVE-2022-3764

CVE, Research URL

CVE-2022-3764

Home page URL

Security reports for Form Vibes – Database Manager for Forms

Application

Form Vibes – Database Manager for Forms

Published on
Jan 16, 2024
Research Description
The plugin does not filter the "delete_entries" parameter from user requests, leading to an SQL Injection vulnerability.
Affected versions
Min -, max 1.4.9.
Status
vulnerable
Previous vulnerability researches
Form Vibes – Database Manager for Forms (CVE-2024-5325) , Jul 12, 2024
Form Vibes – Database Manager for Forms (CVE-2024-5309) , Sep 05, 2024
Form Vibes – Database Manager for Forms (CVE-2022-4974) , Nov 15, 2024
Form Vibes – Database Manager for Forms (4a48804bae01b443ed063f4682c7359c9207a0ba) , Jun 07, 2024
Form Vibes – Database Manager for Forms (CVE-2022-3764) , Jun 07, 2024
New vulnerability
Add Code To Head (CVE-2025-48314) , Aug 29, 2025
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-58195) , Aug 29, 2025
WP Bulk Delete (CVE-2025-58192) , Aug 29, 2025
Responsive Mobile-Friendly Tooltip (CVE-2025-48316) , Aug 29, 2025
Savyour Affiliate Partner (CVE-2025-48306) , Aug 29, 2025