2 matches found
CVE-2022-0404
The Material Design for Contact Form 7 WordPress plugin through 2.6.4 does not check authorization or that the option mentioned in the notice param belongs to the plugin when processing requests to the cf7mddismissnotice action, allowing any logged in user with roles as low as Subscriber to set...
WordPress plugin Material Design for Contact Form安全漏洞
WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Material Design for Contact Form plugin suffers from a denial of service vulnerability that stems from a plugin validatio...