Lucene search
PatchstackCVELIST:CVE-2024-22134HistoryJan 24, 2024 - 11:39 a.m.
CVE-2024-22134 WordPress Contact Form 7 Extension For Mailchimp Plugin <= 0.5.70 is vulnerable to Server Side Request Forgery (SSRF)
2024-01-2411:39:10
CWE-918
Patchstack
www.cve.org
ssrf
cve-2024-22134
mailchimp
4.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.3%
Server-Side Request Forgery (SSRF) vulnerability in Renzo Johnson Contact Form 7 Extension For Mailchimp.This issue affects Contact Form 7 Extension For Mailchimp: from n/a through 0.5.70.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "contact-form-7-mailchimp-extension",
"product": "Contact Form 7 Extension For Mailchimp",
"vendor": "Renzo Johnson",
"versions": [
{
"lessThanOrEqual": "0.5.70",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Server side request forgery (ssrf)
2024-01-24 12:15:00
nvd
nvd
CVE-2024-22134
2024-01-24 12:15:57
cve
cve
CVE-2024-22134
2024-01-24 12:15:57
wpvulndb
wpvulndb
wordfence
wordfence
4.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.3%
Related for CVELIST:CVE-2024-22134