Skip to main content

Ninja Forms Views 8211 Display Amp Edit Ninja Forms Submissions On Your Site Frontend

1 CVEs product

Monthly

CVE-2026-42741 HIGH This Week

Blind SQL injection in Ninja Forms Views plugin (versions ≤3.3.2) allows authenticated attackers with low-level privileges to extract sensitive database information via specially crafted queries. The vulnerability carries an 8.5 CVSS score with scope change, enabling attackers to access data beyond the plugin's normal authorization boundaries. Reported by Patchstack with detailed vendor advisory available, though no public exploit code or active exploitation (CISA KEV) has been identified at time of analysis.

SQLi Ninja Forms Views 8211 Display Amp Edit Ninja Forms Submissions On Your Site Frontend
NVD
CVSS 3.1
8.5
EPSS
0.0%
EPSS 0% CVSS 8.5
HIGH This Week

Blind SQL injection in Ninja Forms Views plugin (versions ≤3.3.2) allows authenticated attackers with low-level privileges to extract sensitive database information via specially crafted queries. The vulnerability carries an 8.5 CVSS score with scope change, enabling attackers to access data beyond the plugin's normal authorization boundaries. Reported by Patchstack with detailed vendor advisory available, though no public exploit code or active exploitation (CISA KEV) has been identified at time of analysis.

SQLi Ninja Forms Views 8211 Display Amp Edit Ninja Forms Submissions On Your Site Frontend
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy