Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CRM Perks — Vulnerabilities & Security Advisories 49

Browse all 49 CVE security advisories affecting CRM Perks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CRM Perks operates as a customer relationship management platform designed to streamline sales processes and manage client interactions. Security audits have identified forty-nine distinct vulnerabilities within its infrastructure, highlighting significant exposure risks. The most prevalent flaw classes include remote code execution, cross-site scripting, and privilege escalation, which collectively allow attackers to compromise system integrity or access unauthorized data. These issues often stem from insufficient input validation and weak access controls, reflecting common pitfalls in web application development. While no major public data breaches have been widely reported, the high volume of recorded CVEs suggests persistent security gaps that require immediate remediation. Organizations relying on this solution must prioritize patching and rigorous security testing to mitigate the risk of exploitation. Continuous monitoring and adherence to secure coding standards are essential to reduce the attack surface and protect sensitive customer information from potential malicious actors targeting these known weaknesses.

Top products by CRM Perks: CRM Perks Forms Connector for Gravity Forms and Google Sheets Integration for Contact Form 7 HubSpot Integration for Contact Form 7 and Zoho CRM, Bigin WP Gravity Forms Salesforce WP Gravity Forms Constant Contact Plugin CRM Perks WP Gravity Forms Keap/Infusionsoft WP Gravity Forms HubSpot WP Gravity Forms Zoho CRM and Bigin WP Gravity Forms FreshDesk Plugin Integration for WooCommerce and QuickBooks CRM Perks Forms – WordPress Form Builder Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms Integration for Contact Form 7 and Constant Contact WP Gravity Forms Insightly Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for WooCommerce and Salesforce WP Gravity Forms Zendesk WP Gravity Forms Dynamics CRM WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms WP Dynamics CRM for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Integration for Contact Form 7 and Salesforce Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja Forms Integration for WooCommerce and Zoho CRM, Books, Invoice, Inventory, Bigin Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2025-24558 WordPress CRM Perks plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability — CRM PerksCWE-79 7.1 High2025-02-14
CVE-2025-24708 WordPress WP Dynamics CRM plugin <= 1.1.6 - Reflected Cross Site Scripting (XSS) vulnerability — WP Dynamics CRM for Contact Form 7, WPForms, Elementor, Formidable and Ninja FormsCWE-79 7.1 High2025-01-27
CVE-2024-37463 WordPress CRM Perks Forms plugin <= 1.1.5 - Broken Access Control vulnerability — CRM Perks FormsCWE-862 5.3 Medium2024-11-01
CVE-2024-34755 WordPress Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability — Integration for Contact Form 7 and SalesforceCWE-352 4.3 Medium2024-05-17
CVE-2024-34756 WordPress Integration for HubSpot and Contact Form 7 plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability — Integration for Contact Form 7 HubSpotCWE-352 4.3 Medium2024-05-17
CVE-2024-34817 WordPress Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerability — Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-352 4.3 Medium2024-05-10
CVE-2024-30446 WordPress CRM Perks Forms plugin <= 1.1.4 - Cross Site Scripting (XSS) vulnerability — CRM Perks FormsCWE-79 6.5 Medium2024-03-29
CVE-2024-30499 WordPress CRM Perks Forms plugin <= 1.1.4 - SQL Injection vulnerability — CRM Perks FormsCWE-89 8.5 High2024-03-29
CVE-2024-30498 WordPress CRM Perks Forms plugin <= 1.1.4 - Unauthenticated SQL Injection vulnerability — CRM Perks FormsCWE-89 9.3 Critical2024-03-29
CVE-2023-51536 WordPress CRM Perks Forms Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS) — CRM Perks Forms – WordPress Form BuilderCWE-79 5.9 Medium2024-02-01
CVE-2023-31095 WordPress Integration for Contact Form 7 HubSpot Plugin <= 1.2.8 is vulnerable to Open Redirection — Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-601 4.7 Medium2023-12-29
CVE-2023-37982 WordPress Integration for Contact Form 7 and Salesforce Plugin <= 1.3.3 is vulnerable to Open Redirection — Integration for Salesforce and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-601 4.7 Medium2023-12-19
CVE-2023-38478 WordPress Integration for WooCommerce and QuickBooks Plugin <= 1.2.3 is vulnerable to Open Redirection — Integration for WooCommerce and QuickBooksCWE-601 4.7 Medium2023-12-19
CVE-2023-38481 WordPress Integration for WooCommerce and Zoho CRM Plugin < 1.3.7 is vulnerable to Open Redirection — Integration for WooCommerce and Zoho CRM, Books, Invoice, Inventory, BiginCWE-601 4.7 Medium2023-12-19
CVE-2023-47779 WordPress Integration for Contact Form 7 and Constant Contact Plugin <= 1.1.4 is vulnerable to Open Redirection — Integration for Constant Contact and Contact Form 7, WPForms, Elementor, Ninja FormsCWE-601 4.7 Medium2023-12-07
CVE-2023-31212 WordPress Contact Form Entries Plugin <= 1.3.0 is vulnerable to SQL Injection — Database for Contact Form 7, WPforms, Elementor formsCWE-89 8.5 High2023-10-31
CVE-2023-33311 WordPress Contact Form Entries Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS) — Contact Form EntriesCWE-79 6.5 Medium2023-05-28
CVE-2023-25976 WordPress Integration for Contact Form 7 and Zoho CRM, Bigin Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF) — Integration for Contact Form 7 and Zoho CRM, BiginCWE-352 4.3 Medium2023-05-26
CVE-2022-38467 WordPress CRM Perks Forms Plugin <= 1.1.0 is vulnerable to Reflected Cross Site Scripting (XSS) vulnerability — CRM Perks Forms – WordPress Form BuilderCWE-79 6.1 Medium2023-01-14

This page lists every published CVE security advisory associated with CRM Perks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.