CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2877

The Formidable Forms WordPress plugin before 6.3.1 does not adequately authorize the user or validate the plugin URL in its functionality for installing add-ons. This allows a user with a role as low as Subscriber to install and activate arbitrary plugins of arbitrary versions from the WordPress.org plugin repository onto the site, leading to Remote Code Execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.72

EPSS Ranking 98.7%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2023-2877

Strategy11 » Formidable Forms » Version: N/A

cpe:2.3:a:strategy11:formidable_forms:-
Strategy11 » Formidable Forms » Version: 5.0.06

cpe:2.3:a:strategy11:formidable_forms:5.0.06
Strategy11 » Formidable Forms » Version: 5.0.07

cpe:2.3:a:strategy11:formidable_forms:5.0.07
Strategy11 » Formidable Forms » Version: 5.0.08

cpe:2.3:a:strategy11:formidable_forms:5.0.08
Strategy11 » Formidable Forms » Version: 5.0.09

cpe:2.3:a:strategy11:formidable_forms:5.0.09
Strategy11 » Formidable Forms » Version: 5.0.10

cpe:2.3:a:strategy11:formidable_forms:5.0.10
Strategy11 » Formidable Forms » Version: 5.0.11

cpe:2.3:a:strategy11:formidable_forms:5.0.11
Strategy11 » Formidable Forms » Version: 5.0.12

cpe:2.3:a:strategy11:formidable_forms:5.0.12
Strategy11 » Formidable Forms » Version: 5.0.13

cpe:2.3:a:strategy11:formidable_forms:5.0.13
Strategy11 » Formidable Forms » Version: 5.0.13.1

cpe:2.3:a:strategy11:formidable_forms:5.0.13.1
Strategy11 » Formidable Forms » Version: 5.0.14

cpe:2.3:a:strategy11:formidable_forms:5.0.14
Strategy11 » Formidable Forms » Version: 5.0.15

cpe:2.3:a:strategy11:formidable_forms:5.0.15
Strategy11 » Formidable Forms » Version: 5.0.16

cpe:2.3:a:strategy11:formidable_forms:5.0.16
Strategy11 » Formidable Forms » Version: 5.0.17

cpe:2.3:a:strategy11:formidable_forms:5.0.17
Strategy11 » Formidable Forms » Version: 5.1

cpe:2.3:a:strategy11:formidable_forms:5.1
Strategy11 » Formidable Forms » Version: 5.2

cpe:2.3:a:strategy11:formidable_forms:5.2
Strategy11 » Formidable Forms » Version: 5.2.01

cpe:2.3:a:strategy11:formidable_forms:5.2.01
Strategy11 » Formidable Forms » Version: 5.2.02

cpe:2.3:a:strategy11:formidable_forms:5.2.02
Strategy11 » Formidable Forms » Version: 5.2.02.01

cpe:2.3:a:strategy11:formidable_forms:5.2.02.01
Strategy11 » Formidable Forms » Version: 5.2.03

cpe:2.3:a:strategy11:formidable_forms:5.2.03
Strategy11 » Formidable Forms » Version: 5.2.04

cpe:2.3:a:strategy11:formidable_forms:5.2.04
Strategy11 » Formidable Forms » Version: 5.2.05

cpe:2.3:a:strategy11:formidable_forms:5.2.05
Strategy11 » Formidable Forms » Version: 5.2.06

cpe:2.3:a:strategy11:formidable_forms:5.2.06
Strategy11 » Formidable Forms » Version: 5.2.07

cpe:2.3:a:strategy11:formidable_forms:5.2.07
Strategy11 » Formidable Forms » Version: 5.3

cpe:2.3:a:strategy11:formidable_forms:5.3
Strategy11 » Formidable Forms » Version: 5.3.1

cpe:2.3:a:strategy11:formidable_forms:5.3.1
Strategy11 » Formidable Forms » Version: 5.3.2

cpe:2.3:a:strategy11:formidable_forms:5.3.2
Strategy11 » Formidable Forms » Version: 5.4

cpe:2.3:a:strategy11:formidable_forms:5.4
Strategy11 » Formidable Forms » Version: 5.4.1

cpe:2.3:a:strategy11:formidable_forms:5.4.1
Strategy11 » Formidable Forms » Version: 5.4.2

cpe:2.3:a:strategy11:formidable_forms:5.4.2
Strategy11 » Formidable Forms » Version: 5.4.3

cpe:2.3:a:strategy11:formidable_forms:5.4.3
Strategy11 » Formidable Forms » Version: 5.4.4

cpe:2.3:a:strategy11:formidable_forms:5.4.4
Strategy11 » Formidable Forms » Version: 5.4.5

cpe:2.3:a:strategy11:formidable_forms:5.4.5
Strategy11 » Formidable Forms » Version: 5.5

cpe:2.3:a:strategy11:formidable_forms:5.5
Strategy11 » Formidable Forms » Version: 5.5.1

cpe:2.3:a:strategy11:formidable_forms:5.5.1
Strategy11 » Formidable Forms » Version: 5.5.2

cpe:2.3:a:strategy11:formidable_forms:5.5.2
Strategy11 » Formidable Forms » Version: 5.5.3

cpe:2.3:a:strategy11:formidable_forms:5.5.3
Strategy11 » Formidable Forms » Version: 5.5.3.1

cpe:2.3:a:strategy11:formidable_forms:5.5.3.1
Strategy11 » Formidable Forms » Version: 5.5.4

cpe:2.3:a:strategy11:formidable_forms:5.5.4
Strategy11 » Formidable Forms » Version: 5.5.5

cpe:2.3:a:strategy11:formidable_forms:5.5.5
Strategy11 » Formidable Forms » Version: 5.5.6

cpe:2.3:a:strategy11:formidable_forms:5.5.6
Strategy11 » Formidable Forms » Version: 5.5.7

cpe:2.3:a:strategy11:formidable_forms:5.5.7
Strategy11 » Formidable Forms » Version: 6.0

cpe:2.3:a:strategy11:formidable_forms:6.0
Strategy11 » Formidable Forms » Version: 6.0.1

cpe:2.3:a:strategy11:formidable_forms:6.0.1
Strategy11 » Formidable Forms » Version: 6.1

cpe:2.3:a:strategy11:formidable_forms:6.1
Strategy11 » Formidable Forms » Version: 6.1.1

cpe:2.3:a:strategy11:formidable_forms:6.1.1
Strategy11 » Formidable Forms » Version: 6.1.2

cpe:2.3:a:strategy11:formidable_forms:6.1.2
Strategy11 » Formidable Forms » Version: 6.2

cpe:2.3:a:strategy11:formidable_forms:6.2
Strategy11 » Formidable Forms » Version: 6.2.1

cpe:2.3:a:strategy11:formidable_forms:6.2.1
Strategy11 » Formidable Forms » Version: 6.2.2

cpe:2.3:a:strategy11:formidable_forms:6.2.2
Strategy11 » Formidable Forms » Version: 6.2.3

cpe:2.3:a:strategy11:formidable_forms:6.2.3
Strategy11 » Formidable Forms » Version: 6.3

cpe:2.3:a:strategy11:formidable_forms:6.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2877

Products

Pricing

Contact Us