Every CVE whose affected-product data names Theinnovs Eleforms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-2082 — CVSS 7.2 (high): The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting…
CVE-2024-2043 — CVSS 5.3 (medium): The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to unauthorized access of data…
CVE-2024-38748 — CVSS 5.3 (medium): Access Control vulnerability in TheInnovs EleForms allows . This issue affects EleForms: from n/a through 2.9.9.9.
CVE-2024-6626 — CVSS 5.3 (medium): The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to unauthorized access of data…
CVE-2024-6628 — CVSS 4.3 (medium): The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in…