Vulnerability CVE-2021-24916
Published: 2023-08-07

Description:
The Qubely WordPress plugin before 1.8.6 allows unauthenticated user to send arbitrary e-mails to arbitrary addresses via the qubely_send_form_data AJAX action.

Type:

CWE-284

 (Improper Access Control)

 References:
https://wpscan.com/vulnerability/93b893be-59ad-4500-8edb-9fa7a45304d5
Copyright 2026, cxsecurity.com

 

Back to Top