Web-dorado Contact Form Maker — known CVE vulnerabilities
Every CVE whose affected-product data names Web-dorado Contact Form Maker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-2798 — CVSS 9.8 (critical): SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote attackers to execute arbitrary SQL commands via the…
CVE-2023-2655 — CVSS 7.2 (high): The Contact Form by WD WordPress plugin through 1.13.23 does not properly sanitise and escape a parameter before using it in a SQL…