ANALYSIS · 7d530e24· FINISHED 2026-06-13 · PATCHDIFF

wpforms-lite1.8.5.21.8.6.2✓ COMPLETED

Files256
Vulnerable57
True positives0
CVE matched11
1 CVE article ready PatchLeaks generated full security writeups for the matched CVEs · one per CVE, with affected files linked
CVE-2023-7063
SCOPE
All 256 CVE 11 Vuln 57
SORT
11 files · page 1/1
includes/admin/ajax-actions.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-20: Improper Input Validation CVE-2023-7063
#%!d(float64=002)
includes/fields/class-checkbox.php
AI: 2 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-754: Improper Check for Unusual or Exceptional Conditions CVE-2023-7063
#%!d(float64=020)
includes/fields/class-radio.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-691: Insufficient Control Flow Management CVE-2023-7063
#%!d(float64=026)
includes/fields/class-select.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-691: Insufficient Control Flow Management CVE-2023-7063
#%!d(float64=027)
src/Admin/Base/Tables/DataObjects/ColumnBase.php
Not sure
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-20: Improper Input Validation CVE-2023-7063
#%!d(float64=039)
src/Admin/Payments/Views/Overview/Page.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-20: Improper Input Validation CVE-2023-7063
#%!d(float64=062)
src/Emails/Notifications.php
AI: 3 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2023-7063
#%!d(float64=072)
src/Forms/Fields/PaymentSingle/Field.php
AI: 4 vulnerabilities
CWE-20: Improper Input ValidationCWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-1025: Comparison Using Wrong Factors CVE-2023-7063
#%!d(float64=076)
src/Integrations/Stripe/Process.php
AI: 5 vulnerabilities
CWE-20: Improper Input Validation CVE-2023-7063
#%!d(float64=093)
src/Lite/Admin/Settings/Access.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2023-7063
#%!d(float64=097)
templates/emails/general-body-plain.php
AI: 1 vulnerabilities
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2023-7063
#%!d(float64=124)
Select a file from the list to inspect its diff and AI analysis.
↑ ↓ to navigate