Low 3.7
2026-01-24< 4.1.1
MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor <= 4.1.0 - Unauthenticated Form Submission Exposure via Forgeable Cookie Value
MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor
Minimum safe version
4.1.1
Update to 4.1.1 or later to address 26 fixable vulnerabilities
Latest available4.1.4 ✓
Medium 6.4
2025-07-29< 4.0.2
MetForm <= 4.0.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via `mf-template` DOM Element
Medium 4.4
2025-03-27< 3.9.3
CVE-2025-30914
Critical 9.8
2024-08-19< 3.3.0
WordPress Metform Elementor Contact Form Builder Plugin <= 3.2.4 is vulnerable to Arbitrary File Upload
High 7.5
2024-06-11< 3.8.9
CVE-2024-4266
Medium 4.3
2024-05-06< 3.8.4
CVE-2024-33570
Medium 5.4
2024-04-02< 3.8.6
CVE-2024-2791
Medium 5.4
2024-03-13< 3.8.4
CVE-2024-1585
Medium 5.4
2024-01-09< 3.8.2
CVE-2023-6788
Medium 5.3
2024-12-26< 3.4.1
WordPress Metform Elementor Contact Form Builder Plugin <= 3.4.0 is vulnerable to Broken Access Control
Medium 4.3
2023-08-31< 3.3.2
CVE-2023-0689
Medium 4.3
2023-07-12< 3.3.3
CVE-2023-2517
Medium 5.4
2023-06-12< 3.3.1
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)
Medium 5.4
2023-06-12< 3.3.1
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)
High 7.8
2023-06-12< 3.3.1
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.0 is vulnerable to CSV Injection
Medium 4.3
2023-06-12< 3.3.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure
Medium 5.4
2023-06-12< 3.3.1
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)
Medium 5.4
2023-06-09< 3.3.1
CVE-2023-0710
Medium 6.5
2023-06-12< 3.3.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure
Medium 4.3
2023-06-12< 3.3.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure
Medium 4.3
2023-06-12< 3.3.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure
Medium 4.3
2023-06-12< 3.3.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure
Medium 5.3
2023-06-09< 3.3.1
CVE-2023-1843
Medium 5.3
2023-03-03< 3.2.2
WordPress Metform Elementor Contact Form Builder Plugin <= 3.2.1 is vulnerable to Bypass Vulnerability
Medium 6.1
2023-03-02< 3.2.0
CVE-2023-0084
High 7.5
2022-05-10< 3.2.0
CVE-2022-1442