cleantalk
Vulnerabilities and Security Researches

FormsCRM, CVE-2023-33999

CVE, Research URL

CVE-2023-33999

Home page URL

Security reports for FormsCRM

Application

FormsCRM

Published on
Jun 11, 2026
Research Description
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPVibes WP Mail Log allows DOM-Based XSS. This issue affects WP Mail Log: from n/a through 1.0.2.
Affected versions
max 3.6.
Status
vulnerable
Previous vulnerability researches
Stop WP Emails Going to Spam (c3d2eb8bed3b503f03da3c1767b42d67a1396b66) , Jun 07, 2024
Stop WP Emails Going to Spam (CVE-2023-33999) , Jun 12, 2026
New vulnerability
The Ultimate Video Player For WordPress – by Presto Player (CVE-2026-9125) , Jun 12, 2026
Extra Fees Plugin for WooCommerce (CVE-2023-33999) , Jun 12, 2026
Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery (CVE-2023-33999) , Jun 12, 2026
Form Vibes – Database Manager for Forms (CVE-2023-33999) , Jun 12, 2026
FormsCRM (CVE-2023-33999) , Jun 12, 2026