Codepeople Cp Contact Form With Paypal — known CVE vulnerabilities
Every CVE whose affected-product data names Codepeople Cp Contact Form With Paypal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-9233 — CVSS 8.8 (high): The cp-contact-form-with-paypal (aka CP Contact Form with PayPal) plugin before 1.1.6 for WordPress has CSRF with resultant XSS, related to…
CVE-2019-14785 — CVSS 5.4 (medium): The "CP Contact Form with PayPal" plugin before 1.2.99 for WordPress has XSS in the publishing wizard via the wp-admin/admin.php?page=cp_con…
CVE-2023-27460 — CVSS 4.3 (medium): Missing Authorization vulnerability in CodePeople, paypaldev CP Contact Form with Paypal allows Functionality Misuse.This issue affects CP…