#WPForms
LightNews LightNews
nsmckinnon.bsky.social
Gente, if you tried to donate overnight, we ran into some technical difficulties with those dastardly WPForms and, as a result, did not receive your kind entry.

Could we trouble you to try again?

nosubsplease.org/1st-annual-n...
November 18, 2025 at 10:47 AM
pss-for-wp.bsky.social
The WP Mail SMTP by WPForms plugin for WordPress was graded with the Plugin Security Scorecard and got a C+.
Security Scorecard for WP Mail SMTP by WPForms Plugin for WordPress
The WP Mail SMTP by WPForms plugin for WordPress has a security grade of C+.
www.pluginvulnerabilities.com
November 17, 2024 at 9:22 PM
news-it.bsky.social
WordPressの人気プラグイン「WPForms」に重大な脆弱性、アップデートを
#WPForms #ITニュース
ITちゃんねる
WordPressの人気プラグイン「WPForms」に重大な脆弱性、アップデートを #WPForms #ITニュース
dlvr.it
December 12, 2024 at 11:25 AM
soyedmundo.bsky.social
…hasta que el usuario se frustra y abandona.

📉 Datos en la cancha:

– 67% abandona si encuentra trabas (WPForms, 2024)
– Formularios “sorpresivos” elevan la carga mental y generan fuga (Sweller, 1990)
June 22, 2025 at 3:02 PM
cve.skyfleet.blue
CVE-2025-10647 - Embed PDF for WPForms
CVE ID : CVE-2025-10647

Published : Sept. 19, 2025, 9:15 a.m. | 1 hour, 48 minutes ago

Description : The Embed PDF for WPForms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the a...
CVE-2025-10647 - Embed PDF for WPForms <= 1.1.5 - Authenticated (Subscriber+) Arbitrary File Upload
The Embed PDF for WPForms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_handler_download_pdf_media function in all versions up to, and including, 1.1.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the …
cvefeed.io
September 19, 2025 at 11:07 AM
kitafox.bsky.social
WPForms のバグにより、数百万の WordPress サイトで Stripe の払い戻しが可能に

WPForms bug allows Stripe refunds on millions of WordPress sites #BleepingComputer (Dec 10)

#WordPress #WPForms #Stripe #脆弱性 #プラグインアップデート
WPForms bug allows Stripe refunds on millions of WordPress sites
A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions.
buff.ly
December 11, 2024 at 10:30 AM
2rzikkbou3ntafnir2qmmse0gwz.activitypub.awakari.com.ap.brid.gy
Database for Contact Form 7, WPforms, Elementor forms <= 1.4.3 - Unauthentica... The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to PHP Object Inject...

Origin | Interest | Match
CVE-2025-7384 | THREATINT
The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.3 via deserialization of untrusted input in the get_lead_detail function. This makes it possible for unauthenticated a...
cve.threatint.eu
August 13, 2025 at 5:18 AM
pablolarah.bsky.social
🔵 WPForms Plugin Vulnerability Affects Up To 6 Million Sites
by Roger Montti at #searchenginejournal
WPForms WordPress plugin patches a high-severity vulnerability affecting up to 6 million websites

#WPForms #Wordpress #Vulnerability #plugin

www.searchenginejournal.com/wpforms-plug...
White text on blue background: WPForms Plugin Vulnerability Affects Up To 6 Million Sites
December 12, 2024 at 2:53 PM