Ninjaforms
1 CVEs
product
Monthly
The ninja-forms plugin before 3.3.21.2 for WordPress has SQL injection in the search filter on the submissions page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
WordPress
Ninjaforms
NVD
CVSS 3.0
9.8
EPSS
1.8%
EPSS 2%
CVSS 9.8
CRITICAL
Act Now
The ninja-forms plugin before 3.3.21.2 for WordPress has SQL injection in the search filter on the submissions page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
WordPress
Ninjaforms
NVD