Accesspressthemes Ultimate-form-builder-lite — known CVE vulnerabilities
Every CVE whose affected-product data names Accesspressthemes Ultimate-form-builder-lite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-15919 — CVSS 9.8 (critical): The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via…
CVE-2021-24867 — CVSS 9.8 (critical): Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised…