Every CVE whose affected-product data names Verbb Formie, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-32427 — CVSS 5.4 (medium): Formie is a Craft CMS plugin for creating forms. Prior to 2.1.44, when importing a form from JSON, if the field label or handle contained…
CVE-2025-32426 — CVSS 4.6 (medium): Formie is a Craft CMS plugin for creating forms. Prior to version 2.1.44, it is possible to inject malicious code into the HTML content of…
CVE-2024-35191 — CVSS 4.4 (medium): Formie is a Craft CMS plugin for creating forms. Prior to 2.1.6, users with access to a form's settings can include malicious Twig code…