Known Vulnerabilities for products from Crmperks
Listed below are 19 of the newest known vulnerabilities associated with the vendor "Crmperks".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-30953 json | Not Provided | 2025-06-06 | 2026-04-23 | |
| CVE-2024-30499 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks CRM Perks For... | Not Provided | 2024-03-29 | 2026-04-28 |
| CVE-2024-30498 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks CRM Perks For... | Not Provided | 2024-03-29 | 2026-04-28 |
| CVE-2024-30446 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks For... | Not Provided | 2024-03-29 | 2026-04-28 |
| CVE-2024-1069 json | The Contact Form Entries plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on ... | Not Provided | 2024-01-31 | 2026-04-08 |
| CVE-2023-51536 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks For... | Not Provided | 2024-02-01 | 2026-04-28 |
| CVE-2023-47779 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks. Integration for Constant Contact and Contact ... | Not Provided | 2023-12-07 | 2026-04-28 |
| CVE-2023-38481 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for WooCommerce and Zoho CRM, Book... | Not Provided | 2023-12-19 | 2026-04-28 |
| CVE-2023-38478 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for WooCommerce and QuickBooks.Thi... | Not Provided | 2023-12-19 | 2026-04-28 |
| CVE-2023-37982 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for Salesforce and Contact Form 7,... | Not Provided | 2023-12-19 | 2026-04-28 |
| CVE-2023-33311 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CRM Perks Contact Form Entries plugin <= 1.3.0 versi... | 5.4 - MEDIUM | 2023-05-28 | 2023-06-01 |
| CVE-2023-31212 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CRM Perks Database for ... | Not Provided | 2023-10-31 | 2026-04-28 |
| CVE-2023-31095 json | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for HubSpot and Contact Form 7, WP... | Not Provided | 2023-12-29 | 2026-04-28 |
| CVE-2023-25976 json | Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.... | 8.8 - HIGH | 2023-05-26 | 2023-06-01 |
| CVE-2023-2836 json | The CRM Perks Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via form settings in versions up to, an... | Not Provided | 2023-05-31 | 2026-04-08 |
| CVE-2023-2527 json | The Integration for Contact Form 7 and Zoho CRM, Bigin WordPress plugin before 1.2.4 does not properly sanitise and escape a ... | 4.8 - MEDIUM | 2023-06-19 | 2023-11-07 |
| CVE-2022-38467 json | Reflected Cross-Site Scripting (XSS) vulnerability in CRM Perks Forms – WordPress Form Builder <= 1.1.0 ver. | 6.1 - MEDIUM | 2023-01-14 | 2023-11-07 |
| CVE-2022-3604 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2024-01-16 | 2024-01-24 |
| CVE-2021-25080 json | The Contact Form Entries WordPress plugin before 1.1.7 does not validate, sanitise and escape the IP address retrieved via he... | 6.1 - MEDIUM | 2022-01-24 | 2022-01-28 |
| CVE-2021-25079 json | The Contact Form Entries WordPress plugin before 1.2.4 does not sanitise and escape various parameters, such as form_id, stat... | 6.1 - MEDIUM | 2022-01-24 | 2022-01-28 |