CVE-2024-0685

MEDIUM 5.9

Ninja Forms Contact Form <= 3.7.1 - Unauthenticated Second Order SQL Injection

CVSS Score

5.9

EPSS Score

0.0%

EPSS Percentile

0th

The Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Second Order SQL Injection via the email address value submitted through forms in all versions up to, and including, 3.7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to inject SQL in their email address that will append additional into the already existing query when an administrator triggers a personal data export.

CWE	CWE-89
Vendor	kstover
Product	ninja forms – the contact form builder that grows with you
Published	Feb 2, 2024
Last Updated	Apr 8, 2026

Stay Ahead of the Next One

Get instant alerts for kstover ninja forms – the contact form builder that grows with you

Be the first to know when new medium vulnerabilities affecting kstover ninja forms – the contact form builder that grows with you are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

kstover / Ninja Forms – The Contact Form Builder That Grows With You

0 ≤ 3.7.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/3cb73d5d-ca4a-4103-866d-f7bb369a8ce4?source=cve plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/changeset/3028929/ninja-forms/trunk/includes/Admin/UserDataRequests.php sec.stealthcopter.com: https://sec.stealthcopter.com/ninja-contact-forms/

Credits

Matthew Rollings