Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

piotnetdotcom — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting piotnetdotcom. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Piotnetdotcom develops WordPress plugins for form building and popup functionality, with 13 CVEs recorded. Historically, vulnerabilities have included stored cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from insufficient input validation and improper access controls. Security researchers have identified multiple instances where unauthenticated attackers could execute arbitrary code or compromise user accounts through insecure direct object references. While no major public breaches have been widely documented, the consistent pattern of vulnerabilities across their plugin portfolio suggests ongoing challenges in secure coding practices, particularly regarding data sanitization and user permission management.

Top products by piotnetdotcom: Piotnet Addons For Elementor Piotnet Forms
CVE IDTitleCVSSSeverityPublished
CVE-2025-57933 WordPress Piotnet Forms Plugin <= 1.0.30 - Cross Site Request Forgery (CSRF) Vulnerability — Piotnet FormsCWE-352 4.3 Medium2025-09-22
CVE-2024-13650 Piotnet Addons For Elementor <= 2.4.36 - Authenticated (Contributor+) Stored Cross-Site Scripting — Piotnet Addons For ElementorCWE-79 6.4 Medium2025-04-18
CVE-2025-32205 WordPress Piotnet Forms plugin <= 1.0.30 - Path Traversal vulnerability — Piotnet FormsCWE-22 2.7 Low2025-04-10
CVE-2025-32197 WordPress Piotnet Addons For Elementor plugin <= 2.4.36 - Cross Site Scripting (XSS) vulnerability — Piotnet Addons For ElementorCWE-79 6.5 Medium2025-04-04
CVE-2025-31793 WordPress Piotnet Forms plugin <= 1.0.30 - Cross Site Scripting (XSS) vulnerability — Piotnet FormsCWE-79 5.9 Medium2025-04-01
CVE-2025-31792 WordPress Piotnet Forms plugin <= 1.0.30 - Cross Site Scripting (XSS) vulnerability — Piotnet FormsCWE-79 5.9 Medium2025-04-01
CVE-2024-10775 Piotnet Addons For Elementor <= 2.4.32 - Authenticated (Contributor+) Post Disclosure — Piotnet Addons For ElementorCWE-639 4.3 Medium2025-01-15
CVE-2025-22333 WordPress Piotnet Addons For Elementor plugin <= 2.4.31 - Cross-Site Scripting vulnerability — Piotnet Addons For ElementorCWE-79 6.5 Medium2025-01-07
CVE-2024-5502 Piotnet Addons For Elementor <= 2.4.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Piotnet Addons For ElementorCWE-79 6.4 Medium2024-08-23
CVE-2024-5614 Piotnet Addons For Elementor <= 2.4.29 - Unauthenticated Sensitive Information Exposure — Piotnet Addons For ElementorCWE-200 5.3 Medium2024-07-27
CVE-2024-4262 Piotnet Addons For Elementor <= 2.4.28 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widget Attributes — Piotnet Addons For ElementorCWE-79 6.4 Medium2024-05-22
CVE-2024-4432 Piotnet Addons For Elementor <= 2.4.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Piotnet Addons For ElementorCWE-79 6.4 Medium2024-05-18
CVE-2023-6220 Piotnet Forms <= 1.0.28 - Unauthenticated Arbitrary File Upload — Piotnet FormsCWE-434 8.1 High2024-01-11

This page lists every published CVE security advisory associated with piotnetdotcom. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.