cbcvebase.
CVE-2023-35909
published 2023-12-07

CVE-2023-35909: Uncontrolled Resource Consumption vulnerability in Saturday Drive Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress leading to DoS.This…

PriorityP424medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
EPSS
0.64%
45.9th percentile
Uncontrolled Resource Consumption vulnerability in Saturday Drive Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress leading to DoS.This issue affects Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress: from n/a through 3.6.25.

Affected

2 ranges
VendorProductVersion rangeFixed in
ninjaformsninja_forms< 3.6.263.6.26
saturday_driveninja_forms_contact_form_the_drag_and_drop_form_builder_for_wordpressn/a – 3.6.25
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.