Ninjaforms - Ninja Forms CVE

Filtered by vendor Ninjaforms Subscribe

Filtered by product Ninja Forms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-20981	1 Ninjaforms	1 Ninja Forms	2019-08-26	6.4 MEDIUM	9.1 CRITICAL
The ninja-forms plugin before 3.3.9 for WordPress has insufficient restrictions on submission-data retrieval during Export Personal Data requests.
CVE-2016-1209	1 Ninjaforms	1 Ninja Forms	2016-06-23	7.5 HIGH	9.8 CRITICAL
The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote attackers to conduct PHP object injection attacks via crafted serialized values in a POST request.

Vulnerabilities (CVE)