Contact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress

Vulnerabilities 17Slug contact-form-pluginLatest version 4.3.7WordPress.org →

Minimum safe version

4.3.7

Update to 4.3.7 or later to address 17 fixable vulnerabilities

Latest available4.3.7
Medium 6.1
2023-04-05< 3.52

CVE-2013-10022

CVE
N/A
2015-01-22< 3.83

Contact Form <= 3.82 - Authorization Bypass

Wordfence
N/A
< 3.82

Contact Form 3.36 - contact_form.php cntctfrm_contact_email Parameter XSS

WPScan
N/A
< 3.82

Contact Form 3.82 - Unauthorized Language Manipulation

WPScan
N/A
< 4.0.6

Multiple BestWebSoft Plugins - Authenticated Cross-Site Scripting (XSS)

WPScan
N/A
2015-11-27< 3.83

WordPress Contact Form Plugin <= 3.82 - Unauthorized Language Manipulation

Patchstack
N/A
2015-11-27< 3.82

WordPress Contact Form Plugin <= 3.36 - Cross Site Scripting

Patchstack
Medium 6.1
2017-05-22< 4.0.6

CVE-2017-2171

CVEJVN