|2019-04-05||Contact Form by WD <= 1.13.4 - Cross-Site Request Forgery to LFI||fixed in version 1.13.5|
|2015-11-24||Contact Form Maker <= 1.7.30 - Authenticated Blind SQL Injection||fixed in version 1.7.31|
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.