Every CVE whose affected-product data names Wpvibes Form Vibes, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-5325 — CVSS 8.8 (high): The Form Vibes plugin for WordPress is vulnerable to SQL Injection via the ‘fv_export_data’ parameter in all versions up to, and…
CVE-2022-3764 — CVSS 7.2 (high): The plugin does not filter the "delete_entries" parameter from user requests, leading to an SQL Injection vulnerability.
CVE-2024-5309 — CVSS 5.4 (medium): The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to unauthorized access of data and modification of data…