Lucene search
PatchstackCVELIST:CVE-2021-36886HistoryNov 12, 2021 - 12:00 a.m.
CVE-2021-36886 WordPress Contact Form 7 Database Addon – CFDB7 plugin <= 1.2.5.9 - Cross-Site Request Forgery (CSRF) vulnerability
2021-11-1200:00:00
CWE-352
Patchstack
www.cve.org
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
41.9%
Cross-Site Request Forgery (CSRF) vulnerability discovered in Contact Form 7 Database Addon – CFDB7 WordPress plugin (versions <= 1.2.5.9).
CNA Affected
[
{
"product": "Contact Form 7 Database Addon – CFDB7 (WordPress plugin)",
"vendor": "CipherCoin",
"versions": [
{
"lessThanOrEqual": "1.2.5.9",
"status": "affected",
"version": "<= 1.2.5.9",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-36886
2021-12-22 19:15:11
patchstack
patchstack
openvas
openvas
nvd
nvd
CVE-2021-36886
2021-12-22 19:15:11
wpvulndb
wpvulndb
Contact Form 7 Database Addon < 1.2.6.1 - Arbitrary Form Deletion via CSRF
2021-11-12 00:00:00
cnvd
cnvd
WordPress Cross-site Request Forgery Vulnerability (CNVD-2021-102389)
2021-12-24 00:00:00
prion
prion
Cross site request forgery (csrf)
2021-12-22 19:15:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
41.9%
Related for CVELIST:CVE-2021-36886