Vulnerabilities (CVE)

Filtered by vendor Wow-company Subscribe
Filtered by product Wow Forms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24628 1 Wow-company 1 Wow Forms 2024-11-21 6.5 MEDIUM 7.2 HIGH
The Wow Forms WordPress plugin through 3.1.3 does not sanitise or escape a 'did' GET parameter before using it in a SQL statement, when deleting a form in the admin dashboard, leading to an authenticated SQL injection