Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

10Web Form Builder Team — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting 10Web Form Builder Team. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The 10Web Form Builder Team develops WordPress form plugins enabling website creation with drag-and-drop functionality. Historically, their products have been susceptible to multiple remote code execution (RCE) and cross-site scripting (XSS) vulnerabilities, often stemming from insufficient input validation and improper file handling. Privilege escalation issues have also been documented, allowing unauthorized access to administrative functions. The team maintains six CVE records, reflecting recurring security flaws in their form builder components. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly regarding sanitization and access control mechanisms within their WordPress ecosystem offerings.

Top products by 10Web Form Builder Team: Form Maker by 10Web Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder
CVE IDTitleCVSSSeverityPublished
CVE-2024-43220 WordPress Form Maker by 10Web plugin <= 1.15.26 - Reflected Cross Site Scripting (XSS) vulnerability — Form Maker by 10WebCWE-79 7.1 High2024-08-12
CVE-2023-48290 WordPress Form Maker by 10Web plugin <= 1.15.20 - Captcha Bypass Vulnerability vulnerability — Form Maker by 10WebCWE-307 5.3 Medium2024-06-04
CVE-2024-34437 WordPress Form Maker by 10Web plugin <= 1.15.24 - Cross Site Scripting (XSS) vulnerability — Form Maker by 10WebCWE-79 5.9 Medium2024-05-09
CVE-2024-32534 WordPress Form Maker plugin <= 1.15.23 - Cross Site Scripting (XSS) vulnerability — Form Maker by 10WebCWE-79 5.9 Medium2024-04-17
CVE-2023-45071 WordPress Form Maker by 10Web Plugin <= 1.15.18 is vulnerable to Cross Site Scripting (XSS) — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form BuilderCWE-79 7.1 High2023-10-18
CVE-2023-45070 WordPress Form Maker by 10Web Plugin <= 1.15.18 is vulnerable to Cross Site Scripting (XSS) — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form BuilderCWE-79 7.1 High2023-10-18

This page lists every published CVE security advisory associated with 10Web Form Builder Team. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.