CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2655

The Contact Form by WD WordPress plugin through 1.13.23 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.5%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2023-2655

Web-Dorado » Contact Form Maker » Version: 1.11.14

cpe:2.3:a:web-dorado:contact_form_maker:1.11.14
Web-Dorado » Contact Form Maker » Version: 1.11.15

cpe:2.3:a:web-dorado:contact_form_maker:1.11.15
Web-Dorado » Contact Form Maker » Version: 1.12.10

cpe:2.3:a:web-dorado:contact_form_maker:1.12.10
Web-Dorado » Contact Form Maker » Version: 1.12.13

cpe:2.3:a:web-dorado:contact_form_maker:1.12.13
Web-Dorado » Contact Form Maker » Version: 1.12.14

cpe:2.3:a:web-dorado:contact_form_maker:1.12.14
Web-Dorado » Contact Form Maker » Version: 1.12.15

cpe:2.3:a:web-dorado:contact_form_maker:1.12.15
Web-Dorado » Contact Form Maker » Version: 1.12.16

cpe:2.3:a:web-dorado:contact_form_maker:1.12.16
Web-Dorado » Contact Form Maker » Version: 1.12.17

cpe:2.3:a:web-dorado:contact_form_maker:1.12.17
Web-Dorado » Contact Form Maker » Version: 1.12.18

cpe:2.3:a:web-dorado:contact_form_maker:1.12.18
Web-Dorado » Contact Form Maker » Version: 1.12.20

cpe:2.3:a:web-dorado:contact_form_maker:1.12.20
Web-Dorado » Contact Form Maker » Version: 1.12.21

cpe:2.3:a:web-dorado:contact_form_maker:1.12.21
Web-Dorado » Contact Form Maker » Version: 1.12.22

cpe:2.3:a:web-dorado:contact_form_maker:1.12.22
Web-Dorado » Contact Form Maker » Version: 1.12.28

cpe:2.3:a:web-dorado:contact_form_maker:1.12.28
Web-Dorado » Contact Form Maker » Version: 1.12.30

cpe:2.3:a:web-dorado:contact_form_maker:1.12.30
Web-Dorado » Contact Form Maker » Version: 1.12.31

cpe:2.3:a:web-dorado:contact_form_maker:1.12.31
Web-Dorado » Contact Form Maker » Version: 1.12.32

cpe:2.3:a:web-dorado:contact_form_maker:1.12.32
Web-Dorado » Contact Form Maker » Version: 1.12.33

cpe:2.3:a:web-dorado:contact_form_maker:1.12.33
Web-Dorado » Contact Form Maker » Version: 1.12.34

cpe:2.3:a:web-dorado:contact_form_maker:1.12.34
Web-Dorado » Contact Form Maker » Version: 1.12.35

cpe:2.3:a:web-dorado:contact_form_maker:1.12.35
Web-Dorado » Contact Form Maker » Version: 1.12.36

cpe:2.3:a:web-dorado:contact_form_maker:1.12.36
Web-Dorado » Contact Form Maker » Version: 1.12.37

cpe:2.3:a:web-dorado:contact_form_maker:1.12.37
Web-Dorado » Contact Form Maker » Version: 1.12.39

cpe:2.3:a:web-dorado:contact_form_maker:1.12.39
Web-Dorado » Contact Form Maker » Version: 1.12.40

cpe:2.3:a:web-dorado:contact_form_maker:1.12.40
Web-Dorado » Contact Form Maker » Version: 1.12.41

cpe:2.3:a:web-dorado:contact_form_maker:1.12.41
Web-Dorado » Contact Form Maker » Version: 1.12.42

cpe:2.3:a:web-dorado:contact_form_maker:1.12.42
Web-Dorado » Contact Form Maker » Version: 1.12.9

cpe:2.3:a:web-dorado:contact_form_maker:1.12.9
Web-Dorado » Contact Form Maker » Version: 1.13.0

cpe:2.3:a:web-dorado:contact_form_maker:1.13.0
Web-Dorado » Contact Form Maker » Version: 1.13.1

cpe:2.3:a:web-dorado:contact_form_maker:1.13.1
Web-Dorado » Contact Form Maker » Version: 1.13.10

cpe:2.3:a:web-dorado:contact_form_maker:1.13.10
Web-Dorado » Contact Form Maker » Version: 1.13.11

cpe:2.3:a:web-dorado:contact_form_maker:1.13.11
Web-Dorado » Contact Form Maker » Version: 1.13.12

cpe:2.3:a:web-dorado:contact_form_maker:1.13.12
Web-Dorado » Contact Form Maker » Version: 1.13.17

cpe:2.3:a:web-dorado:contact_form_maker:1.13.17
Web-Dorado » Contact Form Maker » Version: 1.13.19

cpe:2.3:a:web-dorado:contact_form_maker:1.13.19
Web-Dorado » Contact Form Maker » Version: 1.13.20

cpe:2.3:a:web-dorado:contact_form_maker:1.13.20
Web-Dorado » Contact Form Maker » Version: 1.13.21

cpe:2.3:a:web-dorado:contact_form_maker:1.13.21
Web-Dorado » Contact Form Maker » Version: 1.13.23

cpe:2.3:a:web-dorado:contact_form_maker:1.13.23
Web-Dorado » Contact Form Maker » Version: 1.13.3

cpe:2.3:a:web-dorado:contact_form_maker:1.13.3
Web-Dorado » Contact Form Maker » Version: 1.13.4

cpe:2.3:a:web-dorado:contact_form_maker:1.13.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2655

Products

Pricing

Contact Us