Ninjaforms Ninja Forms vulnerabilities
57 known vulnerabilities affecting ninjaforms/ninja_forms.
Total CVEs
57
CISA KEV
0
Public exploits
5
Exploited in wild
4
Severity breakdown
CRITICAL6HIGH11MEDIUM40
Vulnerabilities
Page 3 of 3
CVE-2020-36173P4MEDIUMCVSS 5.3fixed in 3.4.282021-01-06
CVE-2020-36173 [MEDIUM] CWE-116 CVE-2020-36173: The Ninja Forms plugin before 3.4.28 for WordPress lacks escaping for submissions-table fields.
The Ninja Forms plugin before 3.4.28 for WordPress lacks escaping for submissions-table fields.
nvd
CVE-2021-24166P4MEDIUMCVSS 5.4fixed in 3.4.342021-04-05
CVE-2021-24166 [MEDIUM] CWE-352 CVE-2021-24166: The wp_ajax_nf_oauth_disconnect from the Ninja Forms Contact Form – The Drag and Drop Form Builder f
The wp_ajax_nf_oauth_disconnect from the Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress WordPress plugin before 3.4.34 had no nonce protection making it possible for attackers to craft a request to disconnect a site's OAuth connection.
nvd
CVE-2024-2108P4MEDIUMCVSS 5.4fixed in 3.8.12024-03-29
CVE-2024-2108 [MEDIUM] CWE-79 CVE-2024-2108: The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress is
The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an image title embedded into a form in all versions up to, and including, 3.8.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level
nvd
CVE-2024-13470P4MEDIUMCVSS 5.4fixed in 3.8.252025-01-30
CVE-2024-13470 [MEDIUM] CWE-79 CVE-2024-13470: The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to
The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 3.8.24 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contri
nvd
CVE-2015-2220P4MEDIUMCVSS 4.3≤ 2.8.82015-03-05
CVE-2015-2220 [MEDIUM] CWE-79 CVE-2015-2220: Multiple cross-site scripting (XSS) vulnerabilities in the Ninja Forms plugin before 2.8.9 for WordP
Multiple cross-site scripting (XSS) vulnerabilities in the Ninja Forms plugin before 2.8.9 for WordPress allow (1) remote attackers to inject arbitrary web script or HTML via the ninja_forms_field_1 parameter in a ninja_forms_ajax_submit action to wp-admin/admin-ajax.php or (2) remote administrators to inject arbitrary web script or HTML via the fields
nvd
CVE-2023-5530P4MEDIUMCVSS 4.8fixed in 3.6.342023-11-06
CVE-2023-5530 [MEDIUM] CWE-79 CVE-2023-5530: The Ninja Forms Contact Form WordPress plugin before 3.6.34 does not sanitize and escape its label f
The Ninja Forms Contact Form WordPress plugin before 3.6.34 does not sanitize and escape its label fields, which could allow high privilege users such as admin to perform Stored XSS attacks. Only users with the unfiltered_html capability can perform this, and such users are already allowed to use JS in posts/comments etc however the vendor acknowledged
nvd
CVE-2024-50515P4MEDIUMCVSS 4.8≤ 3.8.162024-11-19
CVE-2024-50515 [MEDIUM] CWE-79 CVE-2024-50515: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kevin Stover Ninja Forms ninja-forms allows Stored XSS.This issue affects Ninja Forms: from n/a through <= 3.8.16.
nvd
CVE-2024-50514P4MEDIUMCVSS 4.8≤ 3.8.162024-11-19
CVE-2024-50514 [MEDIUM] CWE-79 CVE-2024-50514: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kevin Stover Ninja Forms ninja-forms allows Stored XSS.This issue affects Ninja Forms: from n/a through <= 3.8.16.
nvd
CVE-2025-2524P4MEDIUMCVSS 4.8fixed in 3.10.12025-05-19
CVE-2025-2524 [MEDIUM] CWE-79 CVE-2025-2524: The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, w
The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
nvd
CVE-2021-25056P4MEDIUMCVSS 4.8fixed in 3.6.102022-07-04
CVE-2021-25056 [MEDIUM] CWE-79 CVE-2021-25056: The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitise and escape field label
The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitise and escape field labels, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
nvd
CVE-2021-25066P4MEDIUMCVSS 4.8fixed in 3.6.102022-07-04
CVE-2021-25066 [MEDIUM] CWE-79 CVE-2021-25066: The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitize and escape some import
The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitize and escape some imported data, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
nvd
CVE-2024-43999P4MEDIUMCVSS 4.8fixed in 3.8.122024-09-18
CVE-2024-43999 [MEDIUM] CWE-79 CVE-2024-43999: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11.
nvd
CVE-2025-2560P4MEDIUMCVSS 4.8fixed in 3.10.12025-05-19
CVE-2025-2560 [MEDIUM] CWE-79 CVE-2025-2560: The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, w
The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
nvd
CVE-2025-2561P4MEDIUMCVSS 4.8fixed in 3.10.12025-05-19
CVE-2025-2561 [MEDIUM] CWE-79 CVE-2025-2561: The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, w
The Ninja Forms WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
nvd
CVE-2025-10499P4MEDIUMCVSS 4.3fixed in 3.12.12025-09-27
CVE-2025-10499 [MEDIUM] CWE-352 CVE-2025-10499: The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to
The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.12.0. This is due to missing or incorrect nonce validation on the maybe_opt_in() function. This makes it possible for unauthenticated attackers to opt an affected site into usage stat
nvd
CVE-2021-36827P4MEDIUMCVSS 4.8≤ 3.6.92022-06-16
CVE-2021-36827 [MEDIUM] CWE-79 CVE-2021-36827: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saturday Drive's Ninja Forms Conta
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saturday Drive's Ninja Forms Contact Form plugin <= 3.6.9 at WordPress via "label".
nvd
CVE-2024-2113P4MEDIUMCVSS 4.3fixed in 3.8.12024-03-29
CVE-2024-2113 [MEDIUM] CWE-352 CVE-2024-2113: The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress is
The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.0. This is due to missing or incorrect nonce validation on the nf_download_all_subs AJAX action. This makes it possible for unauthenticated attackers to trigger an export
nvd
← Previous3 / 3