Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24144

Disclosure Date: March 18, 2021 (last updated February 22, 2025)
Unvalidated input in the Contact Form 7 Database Addon plugin, versions before 1.2.5.6, was prone to a vulnerability that lets remote attackers inject arbitrary formulas into CSV files.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0