MondoUnix » CONTACT FORM

WordPress Contact Form DB 2.8.13 Cross Site Scripting

October 10, 2014, 6:05 am

Advisory ID: HTB23233 Product: Contact Form DB WordPress plugin Vendor: Michael Simpson Vulnerable Version(s): 2.8.13 and probably prior Tested Version: 2.8.13 Advisory Publication: September 17, 2014...

View Article

WordPress / Joomla Creative Contact Form 0.9.7 Shell Upload

October 24, 2014, 7:39 am

#!/usr/bin/python # # Exploit Name: Wordpress and Joomla Creative Contact Form Shell Upload Vulnerability # Wordpress plugin version: <= 0.9.7 # Joomla extension version: <= 2.0.0 # #...

View Article

WordPress Clean And Simple Contact Form 4.4.0 XSS

November 6, 2014, 9:32 am

Author : Ajin Abraham Author Website: http://opensecurity.in Affected Product: WordPress Clean and Simple Contact Form Affected Version: <= 4.4.0 Vendor: Meg Nicholas Vendor URL:...

View Article

Joomla Contact Form Maker 1.0.1 SQL Injection

April 3, 2015, 4:23 am

[+]Title: Joomla Contact Form Maker v1.0.1 Component - SQL injection vulnerability [+]Author: TUNISIAN CYBER [+]Date: 29/03/2015 [+]Vendor:...

View Article

WordPress Encrypted Contact Form 1.0.4 CSRF / XSS

June 19, 2015, 6:03 am

# Title: Cross-site Request Forgery & Cross-site Scripting in Encrypted Contact Form Wordpress Plugin v1.0.4 # Submitter: Nitin Venkatesh # Product: Encrypted Contact Form Wordpress Plugin #...

View Article

WordPress CP Contact Form With Paypal 1.1.5 CSRF / XSS / SQL Injection

July 13, 2015, 1:31 am

# Title: Cross-Site Request Forgery, Cross-Site Scripting and SQL Injection in CP Contact Form with Paypal Wordpress Plugin v1.1.5 # Submitter: Nitin Venkatesh # Product: CP Contact Form with Paypal...

View Article