|2019-05-08||GravityForms < 2.4.9 - Hashed Password Leakage||fixed in version 2.4.9 - 2.7 (Low)|
|2016-10-13||Gravity Forms <= 22.214.171.124 - Authenticated Blind Cross-Site Scripting (XSS)||fixed in version 2.0.7|
|2016-03-01||Gravity Forms <= 126.96.36.199 - Authenticated Reflected Cross-Site Scripti...||fixed in version 1.9.16|
|2015-04-20||Gravity Forms <= 1.9.6 - Cross-Site Scripting (XSS)||fixed in version 1.9.7|
|2015-03-17||Gravity Forms 1.8 <= 188.8.131.52 - Authenticated Blind SQL Injection||fixed in version 184.108.40.206|
|2014-12-08||Gravity Forms <= 1.8.19 - Arbitrary File Upload||fixed in version 1.8.20|
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.