Known Vulnerabilities for products from Crmperks
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Crmperks".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-30953 json | Not Provided | 2025-06-06 | 2026-04-01 | |
| CVE-2024-1069 json | The Contact Form Entries plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on ... | Not Provided | 2024-01-31 | 2026-04-08 |
| CVE-2023-33311 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CRM Perks Contact Form Entries plugin <= 1.3.0 versi... | 5.4 - MEDIUM | 2023-05-28 | 2023-06-01 |
| CVE-2023-31212 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks Database for ... | 9.8 - CRITICAL | 2023-10-31 | 2023-11-08 |
| CVE-2023-31095 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2023-12-29 | 2024-01-05 |
| CVE-2023-25976 json | Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.... | 8.8 - HIGH | 2023-05-26 | 2023-06-01 |
| CVE-2023-2836 json | The CRM Perks Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via form settings in versions up to, an... | Not Provided | 2023-05-31 | 2026-04-08 |
| CVE-2023-2527 json | The Integration for Contact Form 7 and Zoho CRM, Bigin WordPress plugin before 1.2.4 does not properly sanitise and escape a ... | 4.8 - MEDIUM | 2023-06-19 | 2023-11-07 |
| CVE-2022-38467 json | Reflected Cross-Site Scripting (XSS) vulnerability in CRM Perks Forms – WordPress Form Builder <= 1.1.0 ver. | 6.1 - MEDIUM | 2023-01-14 | 2023-11-07 |
| CVE-2022-3604 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-16 | 2024-01-24 |
| CVE-2021-25080 json | The Contact Form Entries WordPress plugin before 1.1.7 does not validate, sanitise and escape the IP address retrieved via he... | 6.1 - MEDIUM | 2022-01-24 | 2022-01-28 |
| CVE-2021-25079 json | The Contact Form Entries WordPress plugin before 1.2.4 does not sanitise and escape various parameters, such as form_id, stat... | 6.1 - MEDIUM | 2022-01-24 | 2022-01-28 |