WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WordPress Plugin Vulnerabilities
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder
2022-05-09
Form Maker By 10Web < 1.14.12 - Admin+ Stored Cross-Site Scripting
Fixed in version 1.14.12
2021-07-15
Form Maker < 1.13.60 - Authenticated Stored XSS
Fixed in version 1.13.60
2020-07-12
Form Maker by 10Web < 1.13.40 - Authenticated Reflected XSS
Fixed in version 1.13.40
2020-05-26
Form Maker by 10Web < 1.13.36 - Authenticated SQL Injection
Fixed in version 1.13.36
2019-05-10
Form Maker by 10Web < 1.13.3 - Authenticated SQL Injection
Fixed in version 1.13.3
2019-04-05
Form Maker by 10Web < 1.13.5 - Cross-Site Request Forgery (CSRF) to LFI
Fixed in version 1.13.5
2018-05-01
Form Maker by WD < 1.12.24 - CSV Injection
Fixed in version 1.12.24
2014-08-01
Form Maker 1.6.4 - front_end_form_maker.php Unspecified XSS
Fixed in version 1.6.6
Fixed in version 1.14.12Fixed in version 1.13.5Fixed in version 1.14.12Fixed in version 1.13.5