2 matches found
PT-2024-37538 · WordPress · Generate Pdf Using Contact Form 7
Name of the Vulnerable Software and Affected Versions: Generate PDF using Contact Form 7 plugin for WordPress versions up to, and including, 4.0.6 Description: The issue is due to missing nonce validation and the plugin not properly validating a file or its path prior to deleting it in the wp cf7...
PT-2024-23140 · Unknown · Survey Maker
Name of the Vulnerable Software and Affected Versions: Survey Maker versions n/a through 4.0.6 Description: The issue affects Survey Maker, allowing Reflected XSS due to improper neutralization of input during web page generation. This can lead to cross-site scripting attacks. Recommendations: Fo...