Mediaburst Gravity Forms — known CVE vulnerabilities
Every CVE whose affected-product data names Mediaburst Gravity Forms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2017-17780 — CVSS 6.1 (medium): The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to…
CVE-2023-2701 — CVSS 6.1 (medium): The Gravity Forms WordPress plugin before 2.7.5 does not escape generated URLs before outputting them in attributes, leading to Reflected…