Ninjaforma Ninja Forms — known CVE vulnerabilities
Every CVE whose affected-product data names Ninjaforma Ninja Forms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2018-19287 — CVSS 6.1 (medium): XSS in the Ninja Forms plugin before 3.3.18 for WordPress allows Remote Attackers to execute JavaScript via the includes/Admin/Menus/Submiss…