RSS   Vulnerabilities for 'Contact form submissions'   RSS

2021-03-18
 
CVE-2021-24125

CWE-89
 
 
Unvalidated input in the Contact Form Submissions WordPress plugin, versions 1.6.4 and before, could lead to SQL injection in the wpcf7_contact_form GET parameter when submitting a filter request as a high privilege user (admin+)

 

Copyright 2024, cxsecurity.com

 

Back to Top