Contact Form & SMTP Plugin for WordPress by PirateForms

Vulnerabilities 7Slug pirate-formsLatest version 2.6.1WordPress.org →

Minimum safe version

2.6.1

Update to 2.6.1 or later to address 7 fixable vulnerabilities

Latest available2.6.1 ✓

Medium 6.1

2025-03-25< 2.6.0

CVE-2024-11272

Medium 6.1

2025-03-25< 2.6.0

CVE-2024-11273

High 7.3

2025-01-30< 2.6.1

CVE-2024-13453

High 7.2

2023-06-07< 2.5.2

CVE-2019-25145

N/A

2019-07-27< 2.5.2

Contact Form & SMTP Plugin by PirateForms <= 2.5.1 - Unauthenticated HTML injection

N/A

2019-07-29< 1.5.2

WordPress Contact Form & SMTP by PirateForms plugin <= 1.5.1 - Cross-Site Request Forgery (CSRF) vulnerability

N/A

2019-07-29< 1.5.2

WordPress Contact Form & SMTP by PirateForms plugin <= 1.5.1 - HTML Injection vulnerability