CVE-2019-15780
CRITICALStrategy11 Formidable Form Builder - Insecure Deserialization
Title source: ruleDescription
The formidable plugin before 4.02.01 for WordPress has unsafe deserialization.
References (4)
Scores
CVSS v3
9.8
EPSS
0.0111
EPSS Percentile
77.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-502
Status
published
Affected Products (1)
strategy11/formidable_form_builder
< 4.02.01
Timeline
Published
Aug 29, 2019
Tracked Since
Feb 18, 2026