32 matches found
CVE-2025-32679
Cross-Site Request Forgery CSRF vulnerability in ZealousWeb User Registration Using Contact Form 7 user-registration-using-contact-form-7 allows Cross Site Request Forgery.This issue affects User Registration Using Contact Form 7: from n/a through = 2.4...
CVE-2025-32679 WordPress User Registration Using Contact Form 7 plugin <= 2.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in ZealousWeb User Registration Using Contact Form 7 user-registration-using-contact-form-7 allows Cross Site Request Forgery.This issue affects User Registration Using Contact Form 7: from n/a through = 2.4...
CVE-2024-37555
Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7 generate-pdf-using-contact-form-7.This issue affects Generate PDF using Contact Form 7: from n/a through = 4.1.2...
CVE-2024-37555
Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7.This issue affects Generate PDF using Contact Form 7: from n/a through 4.0.6...
CVE-2024-37555
The CVE-2024-37555 entry concerns the WordPress plugin Generate PDF using Contact Form 7, affected versions 4.0.6 and earlier. Affected component is the file upload handling, with the root cause described as an Unrestricted Upload of File with Dangerous Type, enabling arbitrary file upload. Impac...
CVE-2024-37555 WordPress Generate PDF using Contact Form 7 plugin <= 4.1.2 - CSRF to Arbitrary File Upload vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7 generate-pdf-using-contact-form-7.This issue affects Generate PDF using Contact Form 7: from n/a through = 4.1.2...
PT-2024-27653 · Zealousweb · Zealousweb Generate Pdf Using Contact Form 7
Name of the Vulnerable Software and Affected Versions: ZealousWeb Generate PDF using Contact Form 7 versions 4.0.6 and earlier Description: The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects ZealousWeb Generate PDF using Contact Form 7. Recommendations: For...
CVE-2023-49188
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZealousWeb Track Geolocation Of Users Using Contact Form 7 allows Stored XSS.This issue affects Track Geolocation Of Users Using Contact Form 7: from n/a through 2.0...
CVE-2023-49188
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZealousWeb Track Geolocation Of Users Using Contact Form 7 allows Stored XSS.This issue affects Track Geolocation Of Users Using Contact Form 7: from n/a through 2.0...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZealousWeb Track Geolocation Of Users Using Contact Form 7 allows Stored XSS.This issue affects Track Geolocation Of Users Using Contact Form 7: from n/a through 1.4...
CVE-2023-49188
CVE-2023-49188 affects the WordPress plugin Track Geolocation Of Users Using Contact Form 7 by ZealousWeb. The issue is an Improper Neutralization of Input During Web Page Generation (Stored XSS) in versions n/a through 2.0. The root cause is insufficient input sanitization/escaping in how user-p...
PT-2023-31105 · Zealousweb · Zealousweb Track Geolocation Of Users Using Contact Form 7
Name of the Vulnerable Software and Affected Versions: ZealousWeb Track Geolocation Of Users Using Contact Form 7 versions n/a through 2.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS...