CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-3514

The SureForms WordPress plugin before 1.4.4 does not sanitise and escape some of its Form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.2%

CVSS Severity

CVSS v3 Score 3.5

References

https://wpscan.com/vulnerability/fc3da503-a973-44d8-82d0-13539501f8c0/

Products affected by CVE-2025-3514

Brainstormforce » Sureforms » Version: 0.0.10

cpe:2.3:a:brainstormforce:sureforms:0.0.10
Brainstormforce » Sureforms » Version: 0.0.11

cpe:2.3:a:brainstormforce:sureforms:0.0.11
Brainstormforce » Sureforms » Version: 0.0.12

cpe:2.3:a:brainstormforce:sureforms:0.0.12
Brainstormforce » Sureforms » Version: 0.0.13

cpe:2.3:a:brainstormforce:sureforms:0.0.13
Brainstormforce » Sureforms » Version: 0.0.14

cpe:2.3:a:brainstormforce:sureforms:0.0.14
Brainstormforce » Sureforms » Version: 0.0.2

cpe:2.3:a:brainstormforce:sureforms:0.0.2
Brainstormforce » Sureforms » Version: 0.0.3

cpe:2.3:a:brainstormforce:sureforms:0.0.3
Brainstormforce » Sureforms » Version: 0.0.4

cpe:2.3:a:brainstormforce:sureforms:0.0.4
Brainstormforce » Sureforms » Version: 0.0.5

cpe:2.3:a:brainstormforce:sureforms:0.0.5
Brainstormforce » Sureforms » Version: 0.0.6

cpe:2.3:a:brainstormforce:sureforms:0.0.6
Brainstormforce » Sureforms » Version: 0.0.7

cpe:2.3:a:brainstormforce:sureforms:0.0.7
Brainstormforce » Sureforms » Version: 0.0.8

cpe:2.3:a:brainstormforce:sureforms:0.0.8
Brainstormforce » Sureforms » Version: 0.0.9

cpe:2.3:a:brainstormforce:sureforms:0.0.9
Brainstormforce » Sureforms » Version: 1.0.0

cpe:2.3:a:brainstormforce:sureforms:1.0.0
Brainstormforce » Sureforms » Version: 1.0.1

cpe:2.3:a:brainstormforce:sureforms:1.0.1
Brainstormforce » Sureforms » Version: 1.0.2

cpe:2.3:a:brainstormforce:sureforms:1.0.2
Brainstormforce » Sureforms » Version: 1.0.3

cpe:2.3:a:brainstormforce:sureforms:1.0.3
Brainstormforce » Sureforms » Version: 1.0.4

cpe:2.3:a:brainstormforce:sureforms:1.0.4
Brainstormforce » Sureforms » Version: 1.0.5

cpe:2.3:a:brainstormforce:sureforms:1.0.5
Brainstormforce » Sureforms » Version: 1.0.6

cpe:2.3:a:brainstormforce:sureforms:1.0.6
Brainstormforce » Sureforms » Version: 1.0.7

cpe:2.3:a:brainstormforce:sureforms:1.0.7
Brainstormforce » Sureforms » Version: 1.1.0

cpe:2.3:a:brainstormforce:sureforms:1.1.0
Brainstormforce » Sureforms » Version: 1.1.1

cpe:2.3:a:brainstormforce:sureforms:1.1.1
Brainstormforce » Sureforms » Version: 1.1.2

cpe:2.3:a:brainstormforce:sureforms:1.1.2
Brainstormforce » Sureforms » Version: 1.2.0

cpe:2.3:a:brainstormforce:sureforms:1.2.0
Brainstormforce » Sureforms » Version: 1.2.1

cpe:2.3:a:brainstormforce:sureforms:1.2.1
Brainstormforce » Sureforms » Version: 1.2.2

cpe:2.3:a:brainstormforce:sureforms:1.2.2
Brainstormforce » Sureforms » Version: 1.2.3

cpe:2.3:a:brainstormforce:sureforms:1.2.3
Brainstormforce » Sureforms » Version: 1.2.4

cpe:2.3:a:brainstormforce:sureforms:1.2.4
Brainstormforce » Sureforms » Version: 1.2.5

cpe:2.3:a:brainstormforce:sureforms:1.2.5
Brainstormforce » Sureforms » Version: 1.3.0

cpe:2.3:a:brainstormforce:sureforms:1.3.0
Brainstormforce » Sureforms » Version: 1.3.1

cpe:2.3:a:brainstormforce:sureforms:1.3.1
Brainstormforce » Sureforms » Version: 1.3.2

cpe:2.3:a:brainstormforce:sureforms:1.3.2
Brainstormforce » Sureforms » Version: 1.4.0

cpe:2.3:a:brainstormforce:sureforms:1.4.0
Brainstormforce » Sureforms » Version: 1.4.1

cpe:2.3:a:brainstormforce:sureforms:1.4.1
Brainstormforce » Sureforms » Version: 1.4.2

cpe:2.3:a:brainstormforce:sureforms:1.4.2
Brainstormforce » Sureforms » Version: 1.4.3

cpe:2.3:a:brainstormforce:sureforms:1.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-3514

Products

Pricing

Contact Us