3 matches found
CVE-2024-24884
creationtimestamp| type| source ---|---|--- 2024-02-12 10:22:07+00:00| seen| https://t.me/ctinow/183007...
CVE-2024-24884
Summary: CVE-2024-24884 is a CSRF vulnerability in the ARI Soft Contact Form 7 Connector plugin for WordPress. The issue affects versions up to and including 1.2.2 and can be triggered without authentication, enabling an attacker to induce state-changing actions in a user’s session. The patchstac...
WordPress Contact Form 7 Connector Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Contact Form 7 Connector Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-24884 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ee996476bd59 Credits Dhabaleshw...