crmperks

Top products

The 15 most recently published vulnerabilities affecting crmperks.

• CVE-2026-9843Database for Contact Form 7, WPforms, Elementor forms <= 1.5.1 - Unauthenticated Arbitrary File Deletion via CF7 File Field POST Value8.1Jun 20, 2026
• CVE-2026-3831Database for Contact Form 7, WPforms, Elementor forms <= 1.4.9 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode4.3Apr 1, 2026
• CVE-2026-2599Database for Contact Form 7, WPforms, Elementor forms <= 1.4.7 - Unauthenticated PHP Object Injection via 'download_csv'9.8Mar 5, 2026
• CVE-2026-2568WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms <= 1.1.5 - Unauthenticated Stored Cross-Site Scripting7.2Mar 3, 2026
• CVE-2026-0825Database for Contact Form 7, WPforms, Elementor forms <= 1.4.5 - Missing Authorization to Unauthenticated Form Data Exfiltration via CSV Export5.3Jan 28, 2026
• CVE-2025-60180WordPress WP Gravity Forms Salesforce plugin <= 1.5.1 - PHP Object Injection vulnerability9.8Dec 18, 2025
• CVE-2025-60178WordPress WP Gravity Forms HubSpot plugin <= 1.2.6 - Deserialization of untrusted data vulnerability9.8Dec 18, 2025
• CVE-2025-60174WordPress WP Gravity Forms Constant Contact plugin plugin <= 1.1.2 - Deserialization of untrusted data vulnerability9.8Dec 18, 2025
• CVE-2025-60091WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.9 - Deserialization of untrusted data vulnerability9.8Dec 18, 2025
• CVE-2025-60090WordPress WP Gravity Forms Insightly plugin <= 1.1.6 - Deserialization of untrusted data vulnerability9.8Dec 18, 2025
• CVE-2025-60089WordPress WP Gravity Forms FreshDesk plugin plugin <= 1.3.5 - Deserialization of untrusted data vulnerability9.8Dec 18, 2025
• CVE-2025-7384Database for Contact Form 7, WPforms, Elementor forms <= 1.4.3 - Unauthenticated PHP Object Injection to Arbitrary File Deletion9.8Aug 13, 2025
• CVE-2025-7697Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.1.1 - Unauthenticated PHP Object Injection via verify_field_val Function9.8Jul 19, 2025
• CVE-2025-7696Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms <= 1.2.3 - Unauthenticated PHP Object Injection via verify_field_val Function9.8Jul 19, 2025
• CVE-2025-4659Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms <= 1.4.4 - Unauthenticated Full Path Disclosure5.3May 30, 2025