Supsystic Contact Form — known CVE vulnerabilities
Every CVE whose affected-product data names Supsystic Contact Form, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-24276 — CVSS 6.1 (medium): The Contact Form by Supsystic WordPress plugin before 1.7.15 did not sanitise the tab parameter of its options page before outputting it in…
CVE-2023-2528 — CVSS 5.4 (medium): The Contact Form by Supsystic plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.7.24…
CVE-2023-45068 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Contact Form by Supsystic plugin <= 1.7.27 versions.