Lucene search
+L

5 matches found

Circl
Circl
added 2021/11/29 10:33 p.m.9 views

CVE-2021-42358

creationtimestamp| type| source ---|---|--- 2021-11-29 22:33:33+00:00| seen| https://t.me/cibsecurity/33055...

8.8CVSS8.1AI score0.00605EPSS
Exploits0References1
NVD
NVD
added 2021/11/29 7:15 p.m.28 views

CVE-2021-42358

The Contact Form With Captcha WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation in the /cfwc-form.php file during contact form submission, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 1.6.2...

8.8CVSS0.00605EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/11/29 6:10 p.m.8 views

CVE-2021-42358 Contact Form With Captcha <= 1.6.2 Cross-Site Request Forgery to Reflected Cross-Site Scripting

The Contact Form With Captcha WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation in the /cfwc-form.php file during contact form submission, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 1.6.2...

8.8CVSS8.6AI score0.00605EPSS
Exploits0References2
CVE
CVE
added 2021/11/29 6:10 p.m.42 views

CVE-2021-42358

The WordPress plugin “Contact Form With Captcha” is vulnerable to Cross-Site Request Forgery (CSRF) due to missing nonce validation in the cfwc-form.php submission path, affecting versions up to 1.6.2. Connected sources corroborate this CSRF flaw and note the vulnerability can enable injection of...

8.8CVSS8.7AI score0.00605EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/11/29 6:10 p.m.29 views

CVE-2021-42358 Contact Form With Captcha <= 1.6.2 Cross-Site Request Forgery to Reflected Cross-Site Scripting

The Contact Form With Captcha WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation in the /cfwc-form.php file during contact form submission, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 1.6.2...

8.8CVSS8.8AI score0.00605EPSS
Exploits0References2
Rows per page
Query Builder