Vulnerability CVE-2020-35489

Vulnerability CVE-2020-35489

Published: 2020-12-17

Description:

Type:

(Unrestricted Upload of File with Dangerous Type)

CVSS Base Score	Impact Subscore	Exploitability Subscore
10/10	10/10	10/10

Affected software
Rocklobster -> Contact form 7

https://contactform7.com/2020/12/17/contact-form-7-532/

https://wordpress.org/plugins/contact-form-7/#developers

https://wpscan.com/vulnerability/10508

https://www.getastra.com/blog/911/plugin-exploit/contact-form-7-unrestricted-file-upload/

https://www.jinsonvarghese.com/unrestricted-file-upload-in-contact-form-7/