Every CVE whose affected-product data names Kaliforms Kali Forms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-36717 — CVSS 8.8 (high): The Kali Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.1. This is due to…
CVE-2020-36712 — CVSS 8.6 (high): The Kali Forms plugin for WordPress is vulnerable to Unauthenticated Arbitrary Post Deletion in versions up to, and including, 2.1.1. This…
CVE-2024-22305 — CVSS 7.5 (high): Authorization Bypass Through User-Controlled Key vulnerability in ali Forms Contact Form builder with drag & drop for WordPress – Kali…
CVE-2020-36720 — CVSS 7.1 (high): The Kali Forms plugin for WordPress is vulnerable to Authenticated Options Change in versions up to, and including, 2.1.1. This is due to…
CVE-2025-3201 — CVSS 5.9 (medium): The Contact Form builder with drag & drop for WordPress WordPress plugin before 2.4.3 does not sanitise and escape some of its settings…