4 matches found
CVE-2024-2242
creationtimestamp| type| source ---|---|--- 2024-03-13 23:26:35+00:00| seen| https://t.me/ctinow/207296 2024-03-13 23:31:21+00:00| seen| https://t.me/ctinow/207304...
CVE-2024-2242
The Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘active-tab’ parameter in all versions up to, and including, 5.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2024-2242
CVE-2024-2242 – WordPress Contact Form 7 : Affected: Contact Form 7 plugin for WordPress versions
WordPress Contact Form 7 Plugin <= 5.9 is vulnerable to Cross Site Scripting (XSS)
Software Contact Form 7 Type Plugin Vulnerable versions = 5.9 Fixed in 5.9.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2242 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5d34f7907f9a Credits Asaf Mozes Required...