Piotnet

Piotnet Forms

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-4883

  • EPSS 0.81%
  • Veröffentlicht 19.05.2026 11:18:47
  • Zuletzt bearbeitet 19.05.2026 14:38:39

The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file upload due to missing file type validation in the 'piotnetforms_ajax_form_builder' function in all versions up to, and including, 2.1.40. The plugin uses an incomplete extension b...

4.3

CVE-2025-57933

  • EPSS 0.15%
  • Veröffentlicht 22.09.2025 18:25:04
  • Zuletzt bearbeitet 23.04.2026 15:33:03

Cross-Site Request Forgery (CSRF) vulnerability in piotnetdotcom Piotnet Forms piotnetforms allows Cross Site Request Forgery.This issue affects Piotnet Forms: from n/a through <= 1.0.30.

2.7

CVE-2025-32205

  • EPSS 0.32%
  • Veröffentlicht 10.04.2025 08:15:17
  • Zuletzt bearbeitet 29.04.2026 10:16:45

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in piotnetdotcom Piotnet Forms piotnetforms.This issue affects Piotnet Forms: from n/a through <= 1.0.30.

5.9

CVE-2025-31792

  • EPSS 0.32%
  • Veröffentlicht 01.04.2025 15:16:17
  • Zuletzt bearbeitet 23.04.2026 15:28:18

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in piotnetdotcom Piotnet Forms piotnetforms allows Stored XSS.This issue affects Piotnet Forms: from n/a through <= 1.0.30.

5.9

CVE-2025-31793

  • EPSS 0.32%
  • Veröffentlicht 01.04.2025 15:16:17
  • Zuletzt bearbeitet 23.04.2026 15:28:18

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in piotnetdotcom Piotnet Forms piotnetforms allows Stored XSS.This issue affects Piotnet Forms: from n/a through <= 1.0.30.

5.3

CVE-2023-51413

  • EPSS 0.3%
  • Veröffentlicht 12.06.2024 10:15:28
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.29.

5.4

CVE-2024-33634

  • EPSS 0.29%
  • Veröffentlicht 29.04.2024 08:15:07
  • Zuletzt bearbeitet 28.04.2026 19:25:10

Server-Side Request Forgery (SSRF) vulnerability in Piotnet Piotnet Addons For Elementor Pro.This issue affects Piotnet Addons For Elementor Pro: from n/a through 7.1.17.

7.1

CVE-2024-33633

  • EPSS 0.36%
  • Veröffentlicht 29.04.2024 05:15:06
  • Zuletzt bearbeitet 28.04.2026 19:25:10

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Piotnet Piotnet Addons For Elementor Pro allows Reflected XSS.This issue affects Piotnet Addons For Elementor Pro: from n/a through 7.1.17.

9.8

CVE-2023-6220

  • EPSS 1.4%
  • Veröffentlicht 11.01.2024 09:15:47
  • Zuletzt bearbeitet 08.04.2026 19:18:54

The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'piotnetforms_ajax_form_builder' function in versions up to, and including, 1.0.28. This makes it possible for unauthentica...

9.8

CVE-2023-51412

  • EPSS 0.54%
  • Veröffentlicht 29.12.2023 14:15:46
  • Zuletzt bearbeitet 28.04.2026 19:22:44

Unrestricted Upload of File with Dangerous Type vulnerability in Piotnet Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.25.