CVE-2021-24144

🗓️ 18 Mar 2021 15:15:15Reported by [email protected]Type

Unvalidated input in Contact Form 7 Database Addon plugin, versions before 1.2.5.6, can allow remote attackers to inject arbitrary formulas into CSV files

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Prion	Design/Logic Flaw	18 Mar 202115:15	–	prion
wpexploit	Contact Form 7 Database Addon < 1.2.5.6 - CSV Injection	25 Jan 202100:00	–	wpexploit
OpenVAS	WordPress Contact Form 7 Database Addon Plugin (CFDB7) < 1.2.5.8 CSV Injection Vulnerability	24 Mar 202100:00	–	openvas
CVE	CVE-2021-24144	18 Mar 202115:15	–	cve
WPVulnDB	Contact Form 7 Database Addon < 1.2.5.6 - CSV Injection	25 Jan 202100:00	–	wpvulndb
Cvelist	CVE-2021-24144 Contact Form 7 Database Addon < 1.2.5.6 - CSV Injection	18 Mar 202114:57	–	cvelist
CNVD	Wordpress Contact Form 7 Database Addon plugin input validation error vulnerability	19 Mar 202100:00	–	cnvd

Nvd

Node

ciphercoin contact_form_7_database_addonRange<1.2.5.6wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/143cdaff-c536-4ff9-8d64-c617511ddd48

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Mar 2021 15:15Current

CVSS26.8

CVSS37.8

EPSS0.00754