Jumpdemand 4Ecps Web Forms vulnerabilities
2 known vulnerabilities affecting jumpdemand/4ecps_web_forms.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-22504P2CRITICALCVSS 10.0≤ 0.2.182025-01-09
CVE-2025-22504 [CRITICAL] CWE-434 CVE-2025-22504: Unrestricted Upload of File with Dangerous Type vulnerability in jumpdemand 4ECPS Web Forms 4ecps-we
Unrestricted Upload of File with Dangerous Type vulnerability in jumpdemand 4ECPS Web Forms 4ecps-webforms allows Upload a Web Shell to a Web Server.This issue affects 4ECPS Web Forms: from n/a through <= 0.2.18.
nvd
CVE-2022-44628P4MEDIUMCVSS 4.8≤ 0.2.172022-11-03
CVE-2022-44628 [MEDIUM] CWE-79 CVE-2022-44628: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in JumpDEMAND Inc. 4ECPS Web Forms pl
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in JumpDEMAND Inc. 4ECPS Web Forms plugin <= 0.2.17 on WordPress.
nvd