📦 Nex Forms

This SQL injection vulnerability in the NEX-Forms WordPress plugin allows attackers to execute arbitrary SQL commands through the form builder. It affects all WordPress sites using NEX-Forms versions ...

This SQL injection vulnerability in the NEX-Forms WordPress plugin allows attackers to manipulate database queries by injecting malicious SQL through the 'table' parameter. WordPress sites using vulne...

CVE-2021-34675 is an authentication bypass vulnerability in Basix NEX-Forms WordPress plugin that allows unauthenticated attackers to access stored PDF reports without proper authentication. This affe...

This vulnerability allows authenticated attackers with Custom-level access in WordPress to inject malicious scripts into web pages via the NEX-Forms plugin. The scripts execute when users visit compro...

This vulnerability in the NEX-Forms WordPress plugin allows authenticated users with contributor role or higher to inject malicious scripts via shortcode attributes. The scripts are stored and execute...