3 matches found
📄 WordPress Supsystic Contact Form 1.7.36 Server-Side Template Injection
This Metasploit module is for WordPress Supsystic Contact Form plugin versions 1.7.36 and below. The plugin suffers from a server-side template injection vulnerability that allows for remote code execution. This module requires Metasploit: https://metasploit.com/download Current source:...
📄 WordPress Supsystic Contact Form 1.7.36 Server-Side Template Injection
Proof of concept code execution exploit for a server-side template injection vulnerability in WordPress Supsystic Contact Form plugin versions 1.7.36 and below Exploit Title: WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI Date: 3/30/2026 Exploit Author: bootstrapbool Vendor Homepage:...
CVE-2026-4257
creationtimestamp| type| source ---|---|--- 2026-03-30 22:20:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3micp3b722d27 2026-03-30 23:20:36+00:00| seen| Telegram/aYCyNSm85uFE8xgl3G3j-Sn1NnPkfaU1HaAlO581ff2GeJQ 2026-03-31 00:00:42+00:00| seen|...