CVE-2020-36717

The Kali Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.1. This is due to incorrect nonce handling throughout the plugin's function. This makes it possible for unauthenticated attackers to access the plugin's administrative functions via forged request granted they can trick a site administrator into performing an action such as clicking on a link.


We have discovered 191 live websites that are affected by CVE-2020-36717.

Contact us to get more info




Affected Software

Product  Kali Forms
Category Wordpress Plugins
Vulnerable Domains191 live websites (3.04% of Kali Forms install base)
Vulnerable Versions
  • from 0 before 2.1.2
Vulnerable Versions Count12 versions ( 13.79% of all versions)



Details

  • Published - Jun 7, 2023
  • Updated - Dec 23, 2024

Credits

  • Jerome Bruandet (finder)

CVE-2020-36717 usage by Country

United States49 websites



France24 websites
Germany22 websites
Spain7 websites
Russia7 websites
Poland6 websites
Japan5 websites
Canada4 websites
Australia4 websites
GB4 websites

CVE-2020-36717 usage by TLD

.com77 websites
.fr14 websites
.org8 websites
.de7 websites
.ru7 websites
.com.au6 websites
.net5 websites
.nl4 websites
.com.br4 websites
.cz4 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2020-36717

Top websites that are affected by CVE-2020-36717. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
***.mu France**,***
******************.com United States***,***
****************.com United States*,***,***
*****.net United States*,***,***
***********.com United States*,***,***
********.ru Russia*,***,***
***********.fr France*,***,***
*****.************.eu Spain*,***,***
********************.fr France*,***,***
***.**************.org United States*,***,***
See full domain list

FAQ

A total of 191 websites have been identified as vulnerable to CVE-2020-36717, discovered through global website indexing conducted by WebTechSurvey.
Kali Forms is susceptible to CVE-2020-36717 vulnerability.
Kali Forms versions before 2.1.2 are vulnerable to CVE-2020-36717.
Version 2.1.2 of Kali Forms addresses the CVE-2020-36717 security vulnerability.