Show filters
387 Total Results
Displaying 51-60 of 387
Sort by:
Attacker Value
Unknown
CVE-2024-54254
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Kofi Mokome Message Filter for Contact Form 7.This issue affects Message Filter for Contact Form 7: from n/a through 1.6.3.
0
Attacker Value
Unknown
CVE-2023-51362
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Premio All-in-one Floating Contact Form – My Sticky Elements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects All-in-one Floating Contact Form – My Sticky Elements: from n/a through 2.1.3.
0
Attacker Value
Unknown
CVE-2023-50903
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Wpmet Metform Elementor Contact Form Builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Metform Elementor Contact Form Builder: from n/a through 3.4.0.
0
Attacker Value
Unknown
CVE-2023-47871
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in IT Path Solutions Contact Form to Any API allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form to Any API: from n/a through 1.1.6.
0
Attacker Value
Unknown
CVE-2023-47838
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Jules Colle Conditional Fields for Contact Form 7 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conditional Fields for Contact Form 7: from n/a through 2.4.1.
0
Attacker Value
Unknown
CVE-2023-47830
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Addons for Contact Form 7 Live Preview for Contact Form 7 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Live Preview for Contact Form 7: from n/a through 1.2.0.
0
Attacker Value
Unknown
CVE-2023-25037
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in CodePeople Booking Calendar Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booking Calendar Contact Form: from n/a through 1.2.34.
0
Attacker Value
Unknown
CVE-2023-25035
Disclosure Date: December 09, 2024 (last updated December 21, 2024)
Missing Authorization vulnerability in Fullworks Quick Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Quick Contact Form : from n/a through 8.0.3.1.
0
Attacker Value
Unknown
CVE-2024-12165
Disclosure Date: December 07, 2024 (last updated December 21, 2024)
The Mollie for Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 5.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
0
Attacker Value
Unknown
CVE-2024-12026
Disclosure Date: December 07, 2024 (last updated December 21, 2024)
The Message Filter for Contact Form 7 plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the saveFilter() function in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create new filters.
0
