Plugin Vulnerabilities
| 2017-04-12 | Multiple BestWebSoft Plugins - Authenticated Cross-Site Scripting (XSS) | fixed in version 4.0.6 |
| 2017-03-01 | Contact Form by BestWebSoft <= 4.0.1 - Stored Cross-Site Scripting (XSS) | fixed in version 4.0.2 |
| 2015-04-12 | Contact Form Plugin < 3.96 - XSS | fixed in version 3.96 |
| 2015-01-22 | Contact Form 3.82 - Unauthorized Language Manipulation | fixed in version 3.82 |
| 2014-08-01 | Contact Form 3.36 - contact_form.php cntctfrm_contact_email Parameter XSS | fixed in version 3.82 |
| 2013-08-26 | Contact Form 3.34 - contact_form.php cntctfrm_contact_message Parameter XSS | fixed in version 3.35 |
| 2013-08-13 | Contact Form Plugin < 3.52 - XSS | fixed in version 3.52 |
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.
