Web-dorado Wp Form Builder — known CVE vulnerabilities
Every CVE whose affected-product data names Web-dorado Wp Form Builder, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-11557 — CVSS 8.8 (high): The WebDorado Contact Form Builder plugin before 1.0.69 for WordPress allows CSRF via the wp-admin/admin-ajax.php action parameter, with…
CVE-2023-5048 — CVSS 6.4 (medium): The WDContactFormBuilder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Contact_Form_Builder' shortcode in…