INFINITUM FORM — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting INFINITUM FORM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

INFINITUM FORM provides digital form automation solutions for data collection and workflow management. Historically, the product has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its three recorded CVEs. These vulnerabilities often stem from insufficient input validation and improper access controls in form processing engines. While no major public security incidents have been documented, the consistent pattern of critical vulnerabilities suggests potential risks for organizations relying on the platform for sensitive data handling, particularly in environments where form submissions process untrusted user input.

Top products by INFINITUM FORM: Geo Controller

CVEs 3

CVE ID	Title	CVSS	Severity	Published
CVE-2025-62109	WordPress Geo Controller plugin <= 8.9.4 - Sensitive Data Exposure vulnerability — Geo ControllerCWE-201	5.3	Medium	2025-12-09
CVE-2024-30451	WordPress Geo Controller plugin <= 8.6.4 - Cross Site Scripting (XSS) vulnerability — Geo ControllerCWE-79	6.5	Medium	2024-03-29
CVE-2024-30227	WordPress Geo Controller plugin <= 8.6.4 - PHP Object Injection vulnerability — Geo ControllerCWE-502	9.0	Critical	2024-03-28

This page lists every published CVE security advisory associated with INFINITUM FORM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

INFINITUM FORM — Vulnerabilities & Security Advisories 3