Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CRM Perks — Vulnerabilities & Security Advisories 49

Browse all 49 CVE security advisories affecting CRM Perks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CRM Perks operates as a customer relationship management platform designed to streamline sales processes and manage client interactions. Security audits have identified forty-nine distinct vulnerabilities within its infrastructure, highlighting significant exposure risks. The most prevalent flaw classes include remote code execution, cross-site scripting, and privilege escalation, which collectively allow attackers to compromise system integrity or access unauthorized data. These issues often stem from insufficient input validation and weak access controls, reflecting common pitfalls in web application development. While no major public data breaches have been widely reported, the high volume of recorded CVEs suggests persistent security gaps that require immediate remediation. Organizations relying on this solution must prioritize patching and rigorous security testing to mitigate the risk of exploitation. Continuous monitoring and adherence to secure coding standards are essential to reduce the attack surface and protect sensitive customer information from potential malicious actors targeting these known weaknesses.

Top products by CRM Perks: CRM Perks Forms Connector for Gravity Forms and Google Sheets Integration for Contact Form 7 HubSpot Integration for Contact Form 7 and Zoho CRM, Bigin WP Gravity Forms Salesforce WP Gravity Forms Constant Contact Plugin CRM Perks WP Gravity Forms Keap/Infusionsoft WP Gravity Forms HubSpot WP Gravity Forms Zoho CRM and Bigin WP Gravity Forms FreshDesk Plugin Integration for WooCommerce and QuickBooks CRM Perks Forms – WordPress Form Builder Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms Integration for Contact Form 7 and Constant Contact WP Gravity Forms Insightly Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for WooCommerce and Salesforce WP Gravity Forms Zendesk WP Gravity Forms Dynamics CRM WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms WP Dynamics CRM for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for Contact Form 7 and Salesforce Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for WooCommerce and Zoho CRM, Books, Invoice, Inventory, Bigin Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2026-32527 WordPress WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms plugin <= 1.1.5 - Broken Access Control vulnerability — WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja FormsCWE-862 6.5 Medium2026-03-25
CVE-2026-25430 WordPress Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.2 - Broken Access Control vulnerability — Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-862 6.5 Medium2026-03-25
CVE-2026-24559 WordPress Integration for Contact Form 7 HubSpot plugin <= 1.4.3 - Sensitive Data Exposure vulnerability — Integration for Contact Form 7 HubSpotCWE-201 5.3 Medium2026-01-23
CVE-2025-68590 WordPress Integration for Contact Form 7 HubSpot plugin <= 1.4.2 - SQL Injection vulnerability — Integration for Contact Form 7 HubSpotCWE-89 7.6 High2025-12-24
CVE-2025-60174 WordPress WP Gravity Forms Constant Contact plugin plugin <= 1.1.2 - Deserialization of untrusted data vulnerability — WP Gravity Forms Constant Contact PluginCWE-502 9.8 Critical2025-12-18
CVE-2025-60180 WordPress WP Gravity Forms Salesforce plugin <= 1.5.1 - PHP Object Injection vulnerability — WP Gravity Forms SalesforceCWE-502 9.8 Critical2025-12-18
CVE-2025-60178 WordPress WP Gravity Forms HubSpot plugin <= 1.2.6 - Deserialization of untrusted data vulnerability — WP Gravity Forms HubSpotCWE-502 9.8 Critical2025-12-18
CVE-2025-60091 WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.9 - Deserialization of untrusted data vulnerability — WP Gravity Forms Zoho CRM and BiginCWE-502 9.8 Critical2025-12-18
CVE-2025-60089 WordPress WP Gravity Forms FreshDesk plugin plugin <= 1.3.5 - Deserialization of untrusted data vulnerability — WP Gravity Forms FreshDesk PluginCWE-502 9.8 Critical2025-12-18
CVE-2025-60090 WordPress WP Gravity Forms Insightly plugin <= 1.1.6 - Deserialization of untrusted data vulnerability — WP Gravity Forms InsightlyCWE-502 9.8 Critical2025-12-18
CVE-2025-67587 WordPress WP Gravity Forms FreshDesk Plugin plugin <= 1.3.5 - Open Redirection vulnerability — WP Gravity Forms FreshDesk PluginCWE-601 4.7 Medium2025-12-09
CVE-2025-67468 WordPress Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin <= 1.4.6 - Broken Access Control vulnerability — Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja FormsCWE-862 4.3 Medium2025-12-09
CVE-2025-58636 WordPress WP Gravity Forms Keap/Infusionsoft Plugin <= 1.2.3 - Deserialization of untrusted data Vulnerability — WP Gravity Forms Keap/InfusionsoftCWE-502 9.8 Critical2025-11-06
CVE-2025-62981 WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.8 - Open Redirection vulnerability — WP Gravity Forms Zoho CRM and BiginCWE-601 4.7 Medium2025-10-27
CVE-2025-60209 WordPress Connector for Gravity Forms and Google Sheets plugin <= 1.2.6 - PHP Object Injection vulnerability — Connector for Gravity Forms and Google SheetsCWE-502 9.8 Critical2025-10-22
CVE-2025-60151 WordPress WP Gravity Forms HubSpot Plugin <= 1.2.5 - Open Redirection Vulnerability — WP Gravity Forms HubSpotCWE-601 4.7 Medium2025-10-22
CVE-2025-58006 WordPress WP Gravity Forms Keap/Infusionsoft plugin <= 1.2.6 - Open Redirection vulnerability — WP Gravity Forms Keap/InfusionsoftCWE-601 4.7 Medium2025-09-22
CVE-2025-54684 WordPress Integration for Contact Form 7 and Constant Contact Plugin plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability — Integration for Contact Form 7 and Constant ContactCWE-79 5.9 Medium2025-08-14
CVE-2025-54682 WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Cross Site Request Forgery (CSRF) Vulnerability — Connector for Gravity Forms and Google SheetsCWE-352 5.4 Medium2025-08-14
CVE-2025-54681 WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Open Redirection Vulnerability — Connector for Gravity Forms and Google SheetsCWE-601 4.7 Medium2025-08-14
CVE-2025-49330 WordPress Integration for Contact Form 7 and Zoho CRM, Bigin plugin <= 1.3.0 - PHP Object Injection Vulnerability — Integration for Contact Form 7 and Zoho CRM, BiginCWE-502 9.8 Critical2025-06-17
CVE-2025-30953 WordPress WP Gravity Forms Salesforce plugin <= 1.4.7 - Open Redirection Vulnerability — WP Gravity Forms SalesforceCWE-601 4.7 Medium2025-06-06
CVE-2025-30954 WordPress WP Gravity Forms Constant Contact Plugin <= 1.1.0 - Open Redirection Vulnerability — WP Gravity Forms Constant Contact PluginCWE-601 4.7 Medium2025-06-06
CVE-2025-47456 WordPress WP Gravity Forms Zendesk plugin <= 1.1.2 - Open Redirection Vulnerability — WP Gravity Forms ZendeskCWE-601 4.7 Medium2025-05-07
CVE-2025-47455 WordPress Integration for WooCommerce and Salesforce plugin <= 1.7.5 - Open Redirection Vulnerability — Integration for WooCommerce and SalesforceCWE-601 4.7 Medium2025-05-07
CVE-2025-47454 WordPress WP Gravity Forms Dynamics CRM plugin <= 1.1.4 - Open Redirection Vulnerability — WP Gravity Forms Dynamics CRMCWE-601 4.7 Medium2025-05-07
CVE-2025-39558 WordPress CRM Perks plugin <= 1.1.7 - Reflected Cross Site Scripting (XSS) vulnerability — CRM PerksCWE-79 7.1 High2025-04-17
CVE-2025-39600 WordPress Integration for WooCommerce and QuickBooks plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) Vulnerability — Integration for WooCommerce and QuickBooksCWE-352 4.3 Medium2025-04-16
CVE-2025-32269 WordPress WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja FormsCWE-352 4.3 Medium2025-04-04
CVE-2025-30863 WordPress Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.0.9 - Cross Site Request Forgery (CSRF) vulnerability — Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-352 4.3 Medium2025-03-27

This page lists every published CVE security advisory associated with CRM Perks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.