Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:23 p.m.8 views

CVE-2021-24280

In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, any authenticated user, such as a subscriber, could use the importfromdebug AJAX action to inject PHP objects...

8.8CVSS6.6AI score0.01967EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2021/06/04 12:0 a.m.22 views

WordPress Redirection for Contact Form 7 Plugin < 2.3.4 Multiple Vulnerabilities

The WordPress plugin Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

8.8CVSS5.7AI score0.07359EPSS
Exploits9References2
NVD
NVD
added 2021/05/14 12:15 p.m.16 views

CVE-2021-24280

In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, any authenticated user, such as a subscriber, could use the importfromdebug AJAX action to inject PHP objects...

8.8CVSS0.01967EPSS
Exploits2References2
Cvelist
Cvelist
added 2021/05/14 11:38 a.m.21 views

CVE-2021-24280 Redirection for Contact Form 7 < 2.3.4 - Authenticated PHP Object Injection

In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, any authenticated user, such as a subscriber, could use the importfromdebug AJAX action to inject PHP objects...

8.8AI score0.01967EPSS
Exploits2References2
CVE
CVE
added 2021/05/14 11:38 a.m.58 views

CVE-2021-24280

The CVE-2021-24280 entry relates to the WordPress plugin Redirection for Contact Form 7 (versions prior to 2.3.4). The vulnerability allows an authenticated user (e.g., a subscriber) to use the import_from_debug AJAX action to inject PHP objects. This is described consistently across multiple sou...

8.8CVSS8.6AI score0.01967EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder