2 matches found
CVE-2021-3133
The Elementor Contact Form DB plugin before 1.6 for WordPress allows CSRF via backend admin pages...
CVE-2021-3133
The CVE-2021-3133 entry concerns the WordPress Elementor Contact Form DB plugin (versions prior to 1.6). The vulnerability is CSRF against backend admin pages due to insufficient request validation, enabling an attacker to induce logged-in admins to perform unintended actions (e.g., changing plug...